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Abstract 

Non-confluent and non-terminating constructor-based term rewriting systems are useful 
for the purpose of specification and programming. In particular, existing functional logic 
languages use such kind of rewrite systems to define possibly non-strict non-deterministic 
functions. The semantics adopted for non-determinism is call-time choice, whose com- 
bination with non-strictness is a non trivial issue, addressed years ago from a semantic 
point of view with the Constructor-based Rewriting Logic (CRWL), a well-known seman- 
tic framework commonly accepted as suitable semantic basis of modern functional logic 
languages. A drawback of CRWL is that it does not come with a proper notion of one-step 
reduction, which would be very useful to understand and reason about how computations 
proceed. In this paper we develop thoroughly the theory for the first order version of let- 
rewriting, a simple reduction notion close to that of classical term rewriting, but extended 
with a let-binding construction to adequately express the combination of call-time choice 
with non-strict semantics. Let-rewriting can be seen as a particular textual presentation 
of term graph rewriting. We investigate the properties of let-rewriting, most remarkably 
their equivalence with respect to a conservative extension of the CRWL-semantics cop- 
ing with let-bindings, and we show by some case studies that having two interchangeable 
formal views (reduction/semantics) of the same language is a powerful reasoning tool. 
After that, we provide a notion of let-narrowing which is adequate for call-time choice 
as proved by soundness and completeness results of let-narrowing with respect to let- 
rewriting. Moreover, we relate those let-rewriting and let-narrowing relations (and hence 
CRWL) with ordinary term rewriting and narrowing, providing in particular soundness 
and completeness of let-rewriting with respect to term rewriting for a class of programs 
which are deterministic in a semantic sense. 

To appear in Theory and Practice of Logic Programming (TPLP). 

KEYWORDS: term rewriting systems, constructor-based rewriting logic, narrowing, non- 
determinism, call-time choice semantics, sharing, local bindings 



* This work has been partially supported by the Spanish projects FAST-STAMP (TIN2008-06622- 
C03-01/TIN), PROMETIDOS-CM (S2009TIC-1465) and GPD-UCM (UCM-BSCH-GR58 / 08- 
910502). 



2 



Lopez-Fraguas et al. 



coin — > 


repeat(X) — > X 


repeat(X) 


coin — > 1 


heads(X :Y :Ys) 


-> (X,Y) 



Fig. 1. A non-terminating and non-confluent program 



1 Introduction 



Term rewriting systems (TRS, (Baader and Nipkow 19981) are a well-known and 
useful formalism from the point of view of specification and programming. The 
theory of TRS underlies many of the proposals made in the last decades for so- 
called functional logic programming, attempting to integrate into a single language 
the main features of both functional and logic programming — see (DeGroot and 



Lindstrom 1986 Hanus 1994 Hanus 2007) for surveys corresponding to different 
historical stages of the development of functional logic languages — . Typically, func- 
tional logic programs are modeled by some kind of TRS to define functions, and 
logic programming capabilities are achieved by using some kind of narrowing as 
operational mechanism. Narrowing, a notion coming from the field of automated 
theorem proving, generalizes rewriting by using unification instead of matching in 



reduction steps. Up to 14 different variants of narrowing were identified in (Hanus 



1994) as being used in different proposals for the integration of functional and logic 



programming. 



Modern functional logic languages like Curry (Hanus et al. 1995[ Hanus (ed.) 



2006 



2006 



or Toy (Lopez-Fraguas and Sanchez-Hernandez 1999; Caballcro and Sanchez 



consider that programs are constructor-based term rewrite systems, pos- 
sibly non-terminating and non-confluent, thus defining possibly non-strict non- 
deterministic functions. For instance, in the program of Figure [l] non-confluence 
comes from the two rules of coin and non-termination is due to the rule for repeat. 



For non-determinism, those systems adopt call-time choice semantics (Huss 



maim 1993 



Gonzalez-Moreno et al. 1999 ) , also called sometimes singular semantics 



(S0ndergaard and Sestoft 1992). Loosely speaking, call-time choice means to pick 



a value for each argument of a function application before applying it. Call-time 
choice is easier to understand and implement in combination with strict semantics 



and eager evaluation in terminating systems as in (Hussmann 1993), but can be 
made also compatible — via partial values and sharing — with non-strictness and 
laziness in the presence of non-termination. 

In the example of Figure [I] the expression heads(repeat(coin)) can take, under 
call-time choice, the values (0,0) and (1,1), but not (0,1) or (1,0). The example 
illustrates also a key point here: ordinary term rewriting (called run-time choice in 



(Hussmann 1993)) is an unsound procedure for call-time choice semantics, since a 



possible term rewriting derivation is: 

heads(repeat(coin)) — > heads(coin : repeat(coin)) — > 
heads(0 : repeat(coin)) — > heads(0:coin:repeat(coin)) — > 
heads(0 : 1 : repeat(coin)) — > (0, 1) 

In operational terms, call-time choice requires to share the value of all copies of 
a given subexpression created during reduction (all the occurrences of coin, in 
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the reduction above). In contrast, with ordinary term rewriting all copies evolve 
independently. 

It is commonly accepted (see e.g. ( Hanus 2007[ )) that call-time choice semantics 
combined with non-strict semantics is adequately formally expressed by the CRWL 
frameworl^] ( |Gonzalez-Moreno et al. 1996 Gonzalez-Moreno et al. 1999 ) , whose 
main component is a proof calculus that determines the semantics of programs 
and expressions. The flexibility and usefulness of CRWL is evidenced by the large 
set of extensions that have been devised for it, to cope with relevant aspects of 
declarative programming: higher order functions, types, constraints, constructive 
failure, see ( Rodriguez- Artalejo 20011 for a survey on the CRWL approach. 



However, a drawback of the CRWL-framework is its lack of a proper one-step re- 
duction mechanism that could play a role similar to term rewriting with respect 
to equational logic. Certainly CRWL includes operational procedures in the form 



of goal-solving calculi (Gonzalez-Moreno et al. 1999 Vado-Virseda 2003) to solve 



so-called joinability conditions, but they are too complex to be seen as a basic way 
to explain or understand how a reduction can proceed in the presence of non-strict 
non-deterministic functions with call-time choice semantics. 

On the other hand, other works have been more influential on the operational 



side of the field, specially those based on the notion of needed narrowing (Antoy 



et al. 1994 Antoy et al. 2000), a variant of narrowing that organizes the evaluation 



of arguments in function calls in an adequate way (optimal, for some classes of pro- 
grams). Needed narrowing became the 'official' operational procedure of functional 
logic languages, and has also been subject of several variations and improvements 



(see ( |Hanus 2007| |Escobar et al. 2005| ). 

These two coexisting branches of research (one based on CRWL, and the other 
based on classical term rewriting, mostly via needed narrowing) have remained 
disconnected for many years from the technical point of view, despite the fact that 
they both refer to what intuitively is the same programming language paradigm. 

A major problem to establish the connection was that the theory underlying 
needed narrowing is classical term rewriting, which, as we saw above, is not valid 
for non-determinism with call-time choice semantics. This was not a flaw in the 
conception of needed narrowing, as it emerged in a time when non-deterministic 
functions had not yet started to play a distinctive role in the functional logic pro- 
gramming paradigm. The problem is overcome in practice by adding a sharing 
mechanism to the implementation of narrowing, using for instance standard Prolog 



programming techniques (Cheong and Fribourg 1993 Loogen et al. 1993 Antoy 



and Hanus 2000 ) . But this is merely an implementation patch that cannot be used 



as a precise and sound technical basis for the application of results and techniques 
from the semantic side to the operational side and vice versa. Other works, specially 



(Echahed and Janodet 1998 Albert et al. 2005) have addressed in a more formal 



way the issue of sharing in functional logic programming, but they are not good 



1 CRWL stands for Constructor Based ReWriting Logic. 
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starting points to establish a relationship with the CRWL world (see 'Related work' 
below). 



In (Lopez-Fraguas et al. 2007b) we aimed at establishing a bridge, by looking for 
a new variant of term rewriting tailored to call-time choice as realized by CRWL, 
trying to fulfil the following requirements: 

• it should be based on a notion of rewrite step useful to follow how a compu- 
tation proceeds step by step. 

• it should be simple enough to be easily understandable for non-expert poten- 
tial users, (e.g., students or novice programmers) of functional logic languages 
adopting call-time choice. 

• it should be provably equivalent to CRWL, as a well-established technical 
formulation of call-time choice. 

• it should serve as a basis of subsequent notion of narrowing and evaluation 
strategies. 



That was realized in (Lopez-Fraguas et al. 2007b) by means of let-rewriting 



a simple modification of term rewriting using local bindings in the form of let- 
expressions to express sharing. Let-rewriting will be fully presented in Section |1J 
but its main intuitions can be summarized as follows: 

(i) do not rewrite a function call if any of its arguments is evaluable (i.e., still 
contains other function calls), even if there is a matching rule; 

(ii) instead, extract those evaluable arguments to outer let-bindings of the form 
let X — e in e' ; 

(iii) if after some reduction steps the definiens e of the let-binding becomes a 
constructor term t — a value — then the binding X/t can be made effective in 
the body e' . In this way, the values obtained for e in the reduction are shared, 
and therefore call-time choice is respected. 

Consider, for instance, the program example of Figure [I] and the expression 

heads (repeatf coin)) 

for which we previously performed an ordinary term rewriting reduction ending in 
(0, 1). Now we are going to apply liberally the previous intuitive hints as a first 
illustration of let-rewriting. Note first that no rewrite step using a program rule 
can be done with the whole expression heads(repeat(coin)), since in this case there 
is no matching rule. But we can extract the argument repeat(coin) to a let-binding, 
obtaining: 

let X = repeat(coin) in heads(X) 

Now we cannot rewrite repeat( coin), even though the program rule for repeat matches 
it, because coin is evaluable. Again, we can create a let-binding for coin, that will 
be used to share the value selected for coin, if at any later step in the reduction 
coin is indeed reduced: 



let Y = coin in let X — repeat(Y) in heads(X) 
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At this point there is no problem with rewriting repeat(Y), which gives: 

let Y — coin in let X = Y : repeat(Y) in heads(X) 

Rewriting repeat(Y) again, we have: 

let Y = coin in let X = Y : Y : repeat(Y) in heads(X) 

Reducing repeat(Y) indefinitely leads to non-termination, but, at the same time, its 
presence inhibits the application of the binding for X . What we can do is creating 
a new let-binding for the remaining repeat(Y), which results in: 

let Y — coin in let Z = repeat(Y) in let X = Y : Y : Z in heads(X) 

Now, the binding for X can be performed, obtaining: 

let Y = coin in let Z = repeat(Y) in heads(Y :Y:Z) 

At this point, we can use the rule for heads to evaluate heads(Y :Y:Z), because 
nothing evaluable remains in its argument Y : Y : Z, arriving at: 

let Y = coin in let Z = repeat(Y) in (Y, Y) 

We proceed now by reducing coin, for instance, to (reducing it to 1 is also possible): 

let Y = in let Z = repeat(Y) in (Y, Y) 

Performing the binding for Y leads to: 

let Z = repeat(Q) in (0, 0) 

Since Z does not occur in (0, 0), its binding is junk that could be deleted (there will 
be a rule for that in the definition of let-rewriting), and the reduction is finished 
yielding the value 

(0,0) 

It is apparent that (1,1) is another possible result, but not (0,1) nor (1,0), a 
behavior coherent with call-time choice. 

In this example we have tried to proceed in a more or less natural 'lazy' way. 
However, the previous intuitive precepts — and its complete and precise realization 
in Section [4] — do not assume any particular strategy for organizing reductions, 
but only determine which are the 'legal movements' in call-time choice respectful 
reductions. Strategies have been left aside in the paper, not only for simplicity, but 
also to keep them independent of the basic rules for term rewriting with sharing 



(see however Section 6.2) 



Let-rewriting was later on extended to cope with narrowing ( Lopez- Fraguas et al. 



2009c I and higher order features (Lopez-Fraguas et al. 2008) 



This paper is a substantially revised and completed presentation of the theory of 



first order let-rewriting and let-narrowing proposed in ( Lopez-Fraguas et al. 2007b 



Lopez-Fraguas et al. 2009c); some contents have been also taken from (Lopez 



Fraguas et al. 2008). Here, we unify technically those papers and develop a deeper 



investigation of the properties of let-rewriting and related semantics issues. 
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Related work Our let-rewriting and let-narrowing relations are not the only 
nor the first formal operational procedures tuned up to accomplish with the call- 
time choice semantics of functional logic languages. We have already mentioned the 



goal-solving calculi associated to the CRWL-framcwork and its variants ( Gonzalez- 



Moreno et al. 1999 Gonzalez-Moreno et al. 1997 Vado-Vfrseda 2003 1. 



A natural option to express different levels of sharing in rewriting is given by the 



theory of term graph rewriting (Barcndrcgt et al. 1987 Plump 2001). In (Echa- 



hed and Janodet 1997 Echahed and Janodet 19981, the theory of needed rewriting 



and narrowing was extended to the framework of so-called admissible graph rewrit- 
ing systems, aiming at formally modeling the operational behavior of functional 
logic programs. Originally, those works considered orthogonal systems, and extra 
variables were not allowed. These restrictions were dropped in (Antoy et al. 2007) 
(however, a formal treatment of the extension is missing). 

As a matter of fact, our let-rewriting relation can be understood as a particular 
textual adaptation and presentation of term graph rewriting in which a shared 
node is made explicit in the syntax by giving it a name in a let-binding. The 
achievements of Echahed's works are somehow incomparable to ours, even if both 
are attempts to formalize sharing in constructor based systems. They focus and 
succeed on adapting known optimal strategies to the graph rewriting and narrowing 
setting; they also take profit of the fine-grained descriptions permitted by graphs 
to manage aspects of data structures like cycles or pointers. However, they do not 
try to establish a technical relationship with other formulations of call-time choice. 
In contrast, proving equivalence of our operational formalisms wrt. the CRWL 
semantic framework has been a main motivation of our work, but we do not deal 
with the issue of strategies, except for a short informal discussion at the end of the 
paper. 

It is our thought that proving equivalence with respect to CRWL of term graph 
rewriting as given in (Echahed and Janodet 1997) would have been a task much 
harder than the route we follow here. We see a reason for it. The basic pieces that 
term rewriting and CRWL work with are purely syntactic: terms, substitutions, 
etc. Graph rewriting recast these notions in terms of graphs, homomorphisms, etc. 
In contrast, let-rewriting and let-narrowing keep the same set of basic pieces of 
term rewriting and CRWL. In this way, the formalisms are relatively close and 
moving from one to another becomes technically more natural and comfortable. 
This applies also to some further developments of our setting that we have made 



so far, like the extension to higher order features given in (Lopez-Fraguas et al. 



2008), the combination of semantics proposed in (Lopez-Fraguas et al. 2009a), or 



the application of let-rewriting as underlying formal notion of reduction for type 



systems in functional logic languages (Lopez-Fraguas et al. 2010b Lopez-Fraguas 



et al. 2010a). 



Another proposal that can be seen as reformulation of graph rewriting was given 



in ( Albert et al. 2005 ) , inspired in Launchbury's natural semantics ( Launchbury 



1993 ) for lazy evaluation in functional programming. It presents two operational 



(natural and small-step) semantics for functional logic programs supporting sharing 
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and residuation (a specific feature of Curry). These semantics use a flat represen- 
tation of programs coming from an implicit program transformation encoding the 
demand analysis used by needed narrowing, and some kind of heaps to express 
bindings for variables. As in our case, let-expressions are used to express sharing. 
The approach is useful as a technical basis for implementation and program ma- 
nipulation purposes; but we think that the approach is too low-level and close to 
a particular operational strategy to be a completely satisfactory choice as basic 



abstract reduction mechanism for call-time choice. In (Lopez-Fraguas et al. 2007a) 



we established a technical relation of CRWL with the operational procedures of 



(Albert et al. 2005 1 . But this turned out to be a really hard task, even if it was 
done only for a restricted class of programs and expressions. 

Our work focuses on term rewriting systems as basic formalism, as happens with 
the majority of papers about the foundations of functional logic programming, in 
particular the CRWL-series. The idea of reformulating graph rewriting in a syntac- 
tic style by expressing sharing through let-bindings has been applied also to other 
contexts, most remarkably to A-calculus considered as a basis of functional program- 



ming ( Ariola and Arvind 1995 


Ariola et al. 1995 


Ariola and Felleisen 1997 


Maraist 


et al. 1998 


I. In a different direction, but still in relation with A-calculus, other pa- 


pers (Kutzner and Schmidt-Schaufi 1998 Schmidt-Schaufi and Machkasova 2008) 



have extended it with some kind of non-deterministic choice, an idea that comes 



back to McCarthy's amb (McCarthy 1963). As a final note, we should mention that 



our initial ideas about let-rewriting were somehow inspired by ( Lopez-Fraguas and 



Sanchez- Hernandez 2001 Sanchez- Hernandez 2004 1 where indexed unions of set 



expressions — a construction generalizing the idea of let-expressions — were used to 
express sharing in an extension of CRWL to deal with constructive failure. 

The rest of the paper is organized as follows. Section [2] presents some prelimi- 
naries about term rewriting and the CRWL framework; although with them the 
paper becomes almost self-contained, some familiarity with the basic notions of 
TRS certainly help to read the paper. Section [3] contains a first discussion about 
failed or partial solutions to the problem of expressing non-strict call-time choice 
by a simple notion of rewriting. Section [4] is the central part of the paper. First, 
it introduces local bindings in the syntax to express sharing, defines let-rewriting 
as an adequate notion of rewriting for them and proves some intrinsic properties 



of let-rewriting. After that, in Section 4.2 we extend the CRWL-logic to a new 



CRWL; et -logic able to deal with lets in programs and expressions, and we investi- 
gate in depth the properties of the induced semantics, mostly through the notion 



of hyper semantics. Finally, in Section 4.3 we prove results of soundness and com 



pleteness of let-rewriting with respect to CRWL; et , which have as corollary the 
equivalence of both, and hence the equivalence of let-rewriting and CRWL for pro- 
grams and expressions not containing lets, as the original CRWL ones are. Section 
[5] aims at showing the power of having reduction and semantics as equivalent inter- 
changeable tools for reasoning, including a remarkable case study. In Section [6] we 
generalize the notion of let-rewriting to that of let-narrowing and give soundness 
and completeness results of the latter with respect to the former. At the end of 
the section we give some hints on how computations can be organized according 
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to known narrowing strategies. Section [7] addresses the relationship between let- 
rewriting and classical term rewriting, proving in particular their equivalence for 
semantically deterministic programs. Finally, Section [8] analyzes our contribution 
and suggests further work. For the sake of readability, most of the (fully detailed) 
proofs have been moved to |Appcndix A 

2 Preliminaries 

2.1 Constructor based term rewriting systems 

We assume a fixed first order signature £ = CS U FS, where CS and FS are two 
disjoint sets of constructor and defined function symbols respectively, each of them 
with an associated arity. We write CS n and FS n for the set of constructor and 
function symbols of arity n respectively, and E" for CS n UFS n . As usual notations 
we write c,d, . . . for constructors, f,g,... for functions and X,Y, . . . for variables 
taken from a denumerable set V. The notation o stands for tuples of any kind of 
syntactic objects. 

The set Exp of expressions is defined as Exp 3 e X \ h(e\, . . . , e„), where X £ 
V, h £ S" and e±, . . . , e„ € Exp. The set CTerm of constructed terms (or c-terms) 
has the same definition of Exp, but with h restricted to CS n (so CTerm £ Exp). 
The intended meaning is that Exp stands for evaluable expressions, i.e., expressions 
that can contain (user-defined) function symbols, while CTerm stands for data 
terms representing values. We will write e, e', . ■ ■ for expressions and t, s,p, t' , . . . for- 
e-terms. The set of variables occurring in an expression e will be denoted as var(e). 

Contexts (with one hole) are defined by Cntxt 3 C ::= [ ] | h(e\, . . . ,C,. . . ,e n ), 
where h G E™. The application of a context C to an expression e, written as C[e], is 
defined inductively as follows: 

[][e] = e 

h(e 1 , . . . ,C, . . . , e„)[e] = h(e x , . . . ,C[e], . . . , e„) 

Substitutions are finite mappings a : V — > Exp which extend naturally to a : 
Exp — > Exp. We write ea for the application of the substitution a to e. The 
domain and variable range of a substitution a are defined as dom(a) = {X G V | 
Xa ^ X} and vran(a) = \Jxed om (a) var(Xa). By [Xx/ei, . . .,X n /e n ] we denote 
the substitution a such that Ya — if Y = Xi for some Xi £ {Xi, . . . , X n }, and 
Ya = Y otherwise. Given a set of variables D, the notation a\o represents the 
substitution a restricted to D and <j\\d is a shortcut for o~\(v\d)- A c- substitution 
is a substitution 9 such that X9 e CTerm for all X £ dom(9). We write Subst and 
CSubst for the sets of substitutions and c-substitutions respectively. 

A term rewriting system is any set of rewrite rules of the form / — ¥ r where 
l.r £ Exp and I ^ V. A constructor based rewrite rule or program rule has the 
form /(pi, . . . ,p n ) — > r where / £ FS n , r £ Exp and (pi, . . . ,p n ) is a linear tuple 
of c-terms, where linear means that no variable occurs twice in the tuple. Notice 
that we allow r to have extra variables (i.e., variables not occurring in the left- 
hand side). To be precise, we say that X is an extra variable in the rule I — > r iff 
X £ var(r) \ var(l), and by vExtra(R) wc denote the set of extra variables in a 
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rule R. Then a constructor system or program V is any set of program rules, i.e., a 
term rewriting system composed only of program rules. 

Given a program V, its associated rewrite relation — >-p is defined as C[lo~] — >-p 
C[ro~] for any context C, rule (->reP and a £ Subst. There, the subexpression la 
is called the redex used in that rewriting step. Notice that a can instantiate extra 
variables to any expression. For any binary relation 1Z we write 1Z* for the reflexive 
and transitive closure of 1Z, and lZ n for the composition of 7Z with itself n times. 
We write e\ -4-p C2 for a term rewriting derivation or reduction from e\ to e2, and 
e\ —>-p e2 for a n-step reduction. e2 is a normal form wrt. — >j>, written as ^ e%, 
if there is not any e^ such that e2 — >v e^; and ei is a normal form for e\ wrt. 
— >-p, written as ei i 7 ^, iff ei — e2 and e-i is a normal form. When presenting 
derivations, we will sometimes underline the redex used at each rewriting step. In 
the following, we will usually omit the reference to V when writing e\ — >-p e2, or 
denote it by V h e\ — > e 2 . 

A program V is confluent if for any e, e\, e2 £ Exp such that e — e±, e — e-i 
there exists e$ £ Exp such that both e\ — e3 and e2 — >* v e$. 



2.2 The CRWL framework 



We present here a simplified version of the CRWL framework (Gonzalez-Moreno 



et al. 1996 Gonzalez- Moreno et al. 1999). The original CRWL logic considered also 
the possible presence of joinability constraints as conditions in rules in order to 
give a better treatment of strict equality as a built-in, a subject orthogonal to the 
aims of this work. Furthermore, it is possible to replace conditions by the use of 



an ifjhen function, as has been technically proved in (Sanchez-Hernandez 2004) 



for CRWL and in (Antoy 2005) for term rewriting. Therefore, we consider only 
unconditional program rules. 

In order to deal with non-strictness at the semantic level, we enlarge £ with a 
new constant (i.e., a 0-ary constructor symbol) _L that stands for the undefined 
value. The sets Exp±, C'Term±, Subst±, CSubst± of partial expressions, etc., are 
defined naturally. Notice that _L does not appear in programs. Partial expressions 
are ordered by the approximation ordering C defined as the least partial ordering 
satisfying _LC e and e C e' C[e] C C[e'] for all e, e' € Exp^_,C G Cntxt. This 
partial ordering can be extended to substitutions: given 9, a G Subst± we say 9 \— a 
if X9 C Xa for all X £ V. 

The semantics of a program V is determined in CRWL by means of a proof 
calculus able to derive reduction statements of the form e — > t, with e £ Exp± and 
t £ CTerm± , meaning informally that t is (or approximates to) a possible value of 
e, obtained by evaluating e using V under call-time choice. 

The CRWL-proof calculus is presented in Figure [2j Rule (B) allows any expres- 
sion to be undefined or not evaluated (non-strict semantics). Rule (OR) expresses 
that to evaluate a function call we must choose a compatible program rule, perform 
parameter passing (by means of a c-substitution 9) and then reduce the right-hand 
side. The use of c-substitutions in (OR) is essential to express call-time choice; no- 
tice also that by the effect of 9 in (OR), extra variables in the right-hand side of a 
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(B) - 
(DC) 
(OR) 



e —» A- 

ei -o t\ 



(RR) 



X -> X 



X € V 



til 



c(ei, . . . , e n ) -» c(ti, ...,t n ) 

ei -> pi$ ... e n ^> p n 9 rd -> t 
/(ei, ...,e n )->t 



ce cs 71 



(f(pi,---,Pn) 

e e csubst ± 



Fig. 2. Rules of CRWL 



DC 



— o repeattO) — »-L 
DC ; — — DC 



-> : repeat(0) -» :_L 

0_ DC -> DC repeat(O) -> :_L "" 
— ^ OR " 7777* „ „ , DC 



: repeat(0) -» : :_L 



DC ■ 



repeat(coin) — 1> : :_L 



OR 



-» 



(0,0) -» (0,0) 



DC 
DC 



heads(repeat(coin)) —t> (0,0) 



Fig. 3. A CRWL-derivation for heads (repeat(coin)) —> (0,0) 



rule can be replaced by any partial c-term, but not by any expression as in ordinary 
term rewriting — fp. We write V \~crwl e — > t to express that e — > f is derivable in 
the CRWL-calculus using the program T 5 , but in many occasions we will omit the 
mention to V , writing simply e — > t. 

Definition 1 [CRWL -denotation) 

Given a program V, the CRWL -denotation of an expression e € Exp± is defined as 
I e l cwz, = U e CTermjL | 7? h CW L e -> t} 

We will usually omit the subscript CRWL and/or the superscript V when implied 
by the context. 

As an example, Figure [3] shows a CRWL-derivation ox CRWL-proof for the state- 
ment heads (repeat (coin)) —> (0,0), using the program of Figure]!] Observe that in 
the derivation there is only one reduction statement for coin (namely coin —> 0), 
and the obtained value is then shared in the whole derivation, as corresponds to 
call-time choice. 

In alternative derivations, coin could be reduced to 1 (or to _L). It is easy to check 
that: 

[heads(repeat(coin))l = {(0, 0), (1, 1), (_L, 0), (0, J_), (_L, 1), (1, J_), (1_, ±), J_} 
Note that (1,0), (0, 1) \heads(repeat(coin))\. 

We stress the fact that the CRWL-calculus is not an operational mechanism for 
executing programs, but a way of describing the logic of programs. In particular, 
the rule (B) is a semantic artifact to reflect in a CRWL-proof of a statement e — > t 
the fact that, for obtaining t as value of e, one does not need to know the value of a 
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certain subexpression e' (to which the rule (B) is applied). But the calculus comes 
with no indication of when to apply (B) in a successful proof. At the operational 
level, the CRWL framework is accompanied with various lazy narrowing-based goal- 



solving calculi ( Gonzalez-Moreno et al. 1999 Vado-Vfrseda 2003 1 not considered in 
this paper. 

One of the most important properties of CRWL is its compositionality, a property 



very close to the DET-additivity property for algebraic specifications of (Hussmann 



1993) or the referential transparency property of (Sondergaard and Sestoft 1990). 
Compositionality shows that the CRWL-denotation of any expression placed in a 
context only depends on the CRWL-denotation of that expression. This implies 
that the semantics of a whole expression depends only on the semantics of its 
constituents, as shown by the next result, which is an adaptation of a similar one 



proved for the higher order case in ( Lopez-Fraguas et al. 2008) 



Theorem 1 {Compositionality of CRWL) 
For any C € Cntxt, e, e' € Exp± 

[C[e]] = (J [C[i]] 

As a consequence: [e] = [e'J VC G Cntxt.\C[e]\ = |C[e']] 

According to this result we can express for example 

\heads{repeat{coin))] = U fe [ com] LUlrepeat(t)] Iheads(s)} 

The right hand side has an intuitive reading that reflects call-time choice: get a 
value t of com, then get a value s of repeat(t) and then get a value of heads(s). 

In Thcorcm[2]we give an alternative formulation to the compositionality property. 
Although it is essentially equivalent to Theorem [TJ it is a somehow more abstract 
statement, based on the notion of denotation of a context introduced in Definition 
[2] Our main reason for developing such alternative is to give good insights for the 
compositionality results of the extension of CRWL to be presented in Section |4.3| 

We will use sometimes Den as an alias for V(CTerm±), i.e, for the kind of objects 
that are CRWL-denotations of expression^] We define the denotation of a context 
C as a denotation transformer that reflects call-time choice. 

Definition 2 (Denotation of a context) 

Given C € Cntxt, its denotation is a function [C] : Den — > Den defined as 

[C]S=|J[ C MJ> VSEDen 
tes 

With this notion, compositionality can be trivially re-stated as follows: 



2 Den is indeed a superset of the s et of actual denotations, whi ch are particular elements of 
V(CTerm±), namely cones — see jGonzalez-Moreno et al. 1999| l — . But this is not relevant to 
the use we make of Den. 
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Theorem 2 {Compositionality of CRWL, version 2) 
For any C G Cntxt and e, e! <E Exp± 

[C[e]j = [C][e] 

As a consequence: [e] = [e'] <=> VC G Cntxt. [C[e]] = [C[e']] 

The formulation of compositionality given by Theorem [2] makes even more ap- 
parent than Theorem [I] the fact that the syntactic decomposition of an expression e 
in the form C[e'} has a direct semantic counterpart, in the sense that the semantics 
of e is determined by the semantics of its syntactic constituents C and e'. However, 
Theorems [T] and [2] are indeed of the same strength, since each of them can be easily 
proved from the other. 



3 CRWL and rewriting: a first discussion 

Before presenting let-rewriting we find interesting to discuss a couple of (in prin- 
ciple) shorter solutions to the problem of expressing non-strict call-time choice se- 
mantics by means of a simple one-step reduction relation. A first question is whether 
a new relation is needed at all: maybe call-time choice can be expressed by ordinary 
term rewriting via a suitable program transformation. The next result shows that 
in a certain technical sense this is not possible: due to different closedness under 
substitution and compositionality properties of call-time choice and term rewriting, 
none of them can be naturally simulated by each other. 

Proposition 1 

There is a program V for which the following two conditions hold: 

i) no term rewriting system (constructor based or not) V' verifies 

V ^cbwl e -> t iff V' V- e ->* t , for all e G Exp, t G CTerm 

ii) no program V' verifies 

V\- e^* tiSV' \- C rwl e -» t , for all e G Exp, t G CTerm 



Proof 

The following simple program V suffices: 

f(X) -> c(X, X) coin -> coin — !> 1 

i) We reason by contradiction. Assume there is a term rewriting system V' 
such that: V \~crwl e — > t e t, for all e, t. Since V \-qrwl /(A) —» 

c(X,X), we must have /(A) —t^, c(X,X). Now, since — is closed under sub- 



stitutions (Baader and Nipkow 1998), we have f(coin) — c(coin, coin), and 
therefore/(coin) — cicoin, coin) —t^, c(0, 1). But it is easy to see that V \~crwl 
f(coin) —> c(0, 1) does not hold. 

ii) Assume now there is a program V such that: Phe — >* t-^V' ^crwl e — > t, 
for all e, t. Since V h f(coin) — >* c(0, 1), we have V ^crwl f{coin) —> c(0, 1). By 
compositionality of call-time choice (Theorem[l]), there must exist a possibly partial 
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(B™) 


C[e] 




- C[±] 


VC G Cntxt , e G Exp± 


(OR™) 


c[/M,. 


..,t n e)] >- 


- C[r8] 


VC G Cntxt, f(ti,.. .,t„) -> r 6P, 










e csubstx 



Fig. 4. A one-step reduction relation for non-strict call-time choice 



i G CTerm± such that 7-" \~crwl coin — o i and hciiWL /(£) — •> c(0, 1). Now we 
distinguish cases on the value of t: 



If t =_L, then monotonicity of C-RVFL-derivability — see (Gonzalez-Moreno et al. 
1999) or Proposition [3] below — proves that V ^crwl f{s) —> c(0, 1) for any 
s G CTerm±, in particular V' \~crwl /(0) — > c(0, 1). Then, by the assumption on 
7", it should be 7? h /(0) ->* c(0, 1), but this is not true. 

If t = 0, then P' h /(0) -> c(0, 1) as before. The cases t=l, t = Y oxt = d(s) for 
a constructor d different from 0, 1 lead to similar contradictions. 

□ 

Notice that Proposition [l] does not make any assumption about signatures: in 
any of i) or ii), no extension of the signature can lead to a simulating V' . This does 
not contradict Turing completeness of term rewriting systems. Turing complete- 
ness arguments typically rely on encodings not preserving the structure of data, 
something not contemplated in Proposition [TJ 

In a second trial, requiring minimal changes over ordinary term rewriting, we 
impose that the substitution 9 in a rewriting step must be a c-substitution, as in 
the rule (OR) of CRWL. This is done in the one-step rule (OR™) in Figure |2J 
According to it, the step heads (repeat(coin)) — > heads(coin : repeat(coin)) in the 
introductory example of Figure [l] would not be legal anymore. However, (OR™) 
corresponds essentially to innermost evaluation, and is not enough to deal with 
non-strictness, as the following example shows: 

Example 1 

Consider the rules f(X) — > and loop — > loop. With a non-strict semantics f(loop) 
should be reducible to 0. But (OR™) does not allow the step /(loop) —> 0; only 
/(loop) — > /(loop) — > ... is a valid (OR™)-reduction, thus leaving /(loop) seman- 
tically undefined, as would correspond to a strict semantics. 

At this point, the rule (B) of CRWL is a help, since it allows to discard the 
evaluation of any (sub)-expression by reducing it to _L. The result of this discussion 
is the one-step reduction relation >— > given in Figure [4] 

This relation satisfies our initial goals to a partial extent, as it is not difficult to 
prove the following equivalence result. 

Theorem 3 

Let V be a CRWL-program, e G Exp± and t G CTerm±. Then: 

V \-crwl e->t iff e t 
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This result has an interesting reading: non-strict call-time choice can be achieved 
via innermost evaluation if at any step one has the possibility of reducing a subex- 
pression to _L (then, we could speak also of call-by-partial value). For instance, a 
>— ^-rewrite sequence with the example of Figure [I] would be: 

heads(repeat(coin)) s— > heads(repeat(Q)) >— > 
heads(0 : repeat(0)) >— * heads(0 : : repeat(0)) >— > 
heads(0 : :_L) >-> (0,0) 

This gives useful intuitions about non-strict call-time choice and can actually 
serve for a very easy implementation of it, but has a major drawback: in general, 
reduction of a subexpression e requires a don't know guessing between (B™) and 
(OR™), because at the moment of reducing e it is not known whether its value 
will be needed or not later on in the computation. Instead of reducing to _L, let- 
rewriting will create a let-binding let U—e in ... , which does not imply any guessing 
and keeps e for its eventual future use. 



4 Rewriting with local bindings 



Inspired by (Ariola and Arvind 1995 Ariola et al. 1995 Ariola and Felleisen 1997 



Maraist et al. 1998 Plump 1998| |Sanchez-Hernandez 2004), let- rewriting extends 



the syntax of expressions by adding local bindings to express sharing and call-time 
choice. Formally the syntax for let-expressions is: 



LExp 3 e ::= X \ h(e±, 



let X = e% in e 2 



where X 6 V, h G S n , and e\, e 2l . . . , e„ <E LExp. The intended behaviour of 
let X = e\ in ei is that the expression e\ will be reduced only once (at most) and 
then its corresponding value will be shared within 62. For let X = e\ in e^ we call 
ei the definiens of X, and e2 the body of the let-expression. 

The sets FV(e) of free and BV(e) bound variables of e e LExp are defined as: 

FV(X) = {X} 
FV(h(e)) = \J etee FV(e i ) 

FV{let X = e x in e 2 ) = FV(e x ) U (FV(e 2 )\{X}) 



BV(X) = 

BV(h(e)) = \J ei& BV( ei ) 
BV{let X = e x in e 2 ) = BV{e x ) 



UBV(e 2 )U{X} 



Notice that with the given dehnition of FV(let X = e± in e 2 ) there are not recur- 
sive let-bindings in the language since the possible occurrences of X in e\ are not 
considered bound and therefore refer to a 'different' X. For example, the expres- 
sion let X = f(X) in g(X) can be equivalently written as let Y = f(X) in g(Y). 
This is similar to what is done in (Maraist et al. 1998 Ariola et al. 1995} Ariola 



and Felleisen 1997), but not in (Albert et al. 2005 Launchbury 1993). Recursive 



lets have their own interest but there is not a general consensus in the functional 
logic community about their meaning in presence of non-determinism. We remark 
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also that the let-bindings introduced by let-rewriting derivations to be presented 



in Section 4.1 are not recursive. Therefore, recursive lets are not considered in this 
work. 

We will use the notation let X = a in e as a shortcut for let X\ = a\ in . . .in let 
X„ = a n in e. The notion of one-hole context is also extended to the new syntax: 

C ::= [ ] | let X = C in e | let X = e in C | h(. . . ,C, . . .) 

By default, we will use contexts with lets from now on. 

Free variables of contexts are defined as for expressions, so that FV(C) — FV(C[h}) 
for any /i g S°. However, the set BV(C) of variables bound by a context is defined 
quite differently because it consists only of those let-bound variables visible from 
the hole of C. Formally: 

W([]) = 

BV(h(...,C,...)) = BV(C) 

BV(let X = einC) = {X} U BV(C) 

BV(let X =C ine) = BV(C) 



As a noticeable difference with respect to ( |L6pez-Fraguas et al. 2007b ), from 



now on we will allow to use lets in any program, so our program rules have the 
shape f(pi, ■ ■ ■ ,p n ) — > r, for / G FS n , (pi, . . . ,p n ) a linear tuple of c-terms, and 
r G LExp. Notice, however, that the notion of c-term does not change: c-terms do 
not contain function symbols nor lets, although they can contain bound variables 
when put in an appropriate context as happens for example with the subexpression 
(X, X) in the expression let X = coin in (X, X). 

As usual with syntactical binding constructs, we assume a variable convention 
according to which bound variables can be consistently renamed as to ensure that 
the same variable symbol does not occur free and bound within an expression. 
Moreover, to keep simple the management of substitutions, we assume that when- 
ever 9 is applied to an expression e G LExp, the necessary renamings are done in 
e to ensure BV(e) n (dom(6) U vran{9)) = 0. With all these conditions the rules 
defining application of substitutions are simple while avoiding variable capture: 

X6 = 0(X), for leV 

h(e 1 ,...,e n )d = h{e 1 9,...,e n 8), for h e T, n 

(let X — e\ in e2)Q — let X = e\9 in e-^O 

The following example illustrates the use of these conventions. 

(let X = c(X) in letY = z in d(X,Y))[X/c(Y)] 
= (let U = c(X) in letV = z in d(U, V))[X/c(Y)\ 
= let U = c(c(Y)) in let V = z in d(U, V) 

The following substitution lemma will be often a useful technical tool: 
Lemma 1 (Substitution lemma for let-expressions) 

Let e, e' e LExp±, 9 e Subst± and leV such that X $ dom(9) U vran(9). Then: 

(e[X/e'])9 = e9[X/e'9] 
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(Fapp) /(pi, . . . ,p n )9 -> ! rO, if (/(pi, . . . ,p n ) ^r)6P,96 CSubst 

(Letln) . . , e, . . .) let X = e in h(. . . , X, . . .), 

if /i 6 S, e = /(e') with / £ or e = Zei Y = e' in e", and X is a fresh variable 

(Bind) let X = tine -»•' e[X/t], if t G CTerm 
(Elim) Zet X = ei in e 2 -V e 2 , if X ^ FF(e 2 ) 

(Flat) Zef X = (let Y = ei in e 2 ) in e3 — ZeZ; Y = ei in (let X — ei in e-$) 
if Y & FV(e 3 ) 

(Contx) C[e]^ l C[e'], 

if C / [ ], e-> ; e' using any of the previous rules, and in case e— v e' is a (Fapp) 
step using (/(p) -> r) 6P and 6> G CSubst, then «ran(0|\„ ar (p)) n BV(C) = 0. 

Fig. 5. Rules of the let-rewriting relation -V 

4-1 The let-rewriting relation 

Let-expressions can be reduced step by step by means of the let-rewriting relation 
— > l , shown in Figure [5J Rule (Contx) allows us to use any subexpression as redex 
in the derivation. (Fapp) performs a rewriting step in the proper sense, using a 
program rule. Note that only c-substitutions are allowed, to avoid copying of un- 
evaluated expressions which would destroy sharing and call-time choice. To prevent 
that the restriction of (Fapp) to total c-substitutions results in a strict semantics, 
we also provide the rule (Letln) that suspends the evaluation of a subexpression 
by introducing a let-binding. If its value is needed later on, its evaluation can be 
performed by some (Contx) steps and the result propagated by (Bind). This latter 
rule is safe wrt. call-time choice because it only propagates c-terms, that is, either 
completely defined values (without any bound variable) or partially computed val- 
ues with some suspension (bound variable) on it, which will be safely managed by 
the calculus. On the other hand, if the bound variable disappears from the body of 
the let-binding during evaluation, rule (Elim) can be used for garbage collection. 
This rule is useful to ensure that normal forms corresponding to values are c-terms. 
Finally, (Flat) is needed for flattening nested lets; otherwise some reductions could 
become wrongly blocked or forced to diverge. Consider for example the program 
{loop — > loop,g(s(X)) — > 1} and the expression g(s(loop)), which can be reduced 
to let X = (let Y = loop in s(Y)) in g(X) by applying (Letln) twice. Then, with- 
out (Flat) we could only perform reduction steps on loop, thus diverging; by using 
(Flat), we can obtain let Y — loop in let X = s(Y) in g(X), which can be finally 
reduced to 1 by applying (Bind), (Fapp) and (Elim). The condition Y £ FV(e^) 
in (Flat) could be dropped by the variable convention, but we have included it to 
keep the rules independent of the convention. Quite different is the case of (Elim), 
where the condition X ^ FV(e2) is indeed necessary. 

Note that, in contrast to CRWL or the relation >— » in Section [3j let-rewriting 
does not need to use the semantic value _L, which does not appear in programs nor 
in computations. 

Example 2 

Consider the program of Figure[T] We can perform the following let-rewriting deriva- 
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tion for the expression heads(repeat(coin)) , where in each step the corresponding 



redex has been underlined for the sake of readability. 

heads(repeat(coin)) (Letln) 

— > let X = repeat(coin) in heads(X) (Letln) 

—¥ let X = (let Y = coin in repeat(Y)) in heads(X) (Flat) 

— > let Y = coin in let X = repeat(Y) in heads(X) (Fapp) 

— > let Y = coin in let X = Y : repeat(Y) in heads(X) (Letln) 

— y let Y = coin in let X = (let Z — repeat(Y) in Y : Z) in heads(X) (Flat) 

— > let Y = coin in let Z = repeat(Y) in let X — Y : Z in heads(X) (Bind) 

— > let Y = coin in let Z = repeat(Y) in heads(Y : Z) (Fapp) 

— > let Y = coin in let Z = Y : repeat(Y) in heads(Y : Z) (Letln) 

— >• let Y = coin in let Z = (let U = repeat(Y) in Y : U) in heads(Y : Z) (Flat) 

— > let Y = coin in let U — repeat(Y) in let Z = Y : U in heads(Y : Z) (Bind) 

— > let Y = coin in let U = repeat(Y) in heads(Y : Y : U) (Fapp) 

—¥ let Y = coin in let U — repeat(Y) in (Y, Y) (Elim) 

— > l let Y = coin in (Y, Y) (Fapp) 

let Y = in (Y, Y) (Bind) 

-^'JoJ) 



Note that there is not a unique — r -reduction leading to (0, 0). The definition of 
— >' , like traditional term rewriting, does not prescribe any particular strategy. The 
definition of on-demand evaluation strategies for let-rewriting is out of the scope of 
this paper, and is only informally discussed in Section [6.2| 

We study now some properties of let-rewriting that have intrinsic interest and 
will be useful when establishing a relation to CRWL in next sections. 

The same example used in Proposition [l] to show that CRWL is not closed under 
general substitutions shows also that the same applies to let-rewriting. However, 
let-rewriting is closed under c-substitutions, as expected in a semantics for call-time 
choice. 

Lemma 2 ( Closedness under CSubst of let-rewriting) 

For any e, e' € LExp, 6 g CSubst we have that e—t l n e' implies e9 — > l n e'9. 

Another interesting matter is the question of what happens in let-rewriting 
derivations in which the rule (Fapp) is not used — and as a consequence, the program 
is ignored. 

Definition 3 (The -^ lnf relation) 

The relation — > ln f is denned by the rules of Figure [5] except (Fapp). As a conse- 
quence, for any program — C — > l . 

We can think about any let-expression e as an expression from Exp in which 
some additional sharing information has been encoded using the let-construction. 
When we avoid the use of the rule (Fapp) in derivations, we do not make progress in 
the evaluation of the implicit let-less expression corresponding to e, but we change 
the sharing-enriched representation of that expression in the let-rewriting syntax. 
Following terminology from term graph rewriting — as in fact a let-expression is a 
textual representation of a term graph — all the rules of let-rewriting except (Fapp) 
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move between two isomorphic term graphs (Plump 2001 Plump 1998). The — 
relation will be used to reason about these kind of derivations. 

The first interesting property of — > ln f is that it is a terminating relation. 

Proposition 2 {Termination of—> ln f) 

For any program V, the relation —y"^ is terminating. As a consequence, every 
e e LExp has at least one — > '"^-normal form e' (written as e \. ln f e'). 

However, for nontrivial signatures the relation — > ln f is not confluent (hence the 
relation — s-' is not confluent either). 

Example 3 

Consider a signature such that f,g € FS°,c £ CS 2 and / ^ g. Then c(f,g) — > ln ?* 
let X = f in let Y = g in c(X,Y) and c(f,g) ->W let Y = g in let X = 
f in c(X, Y), but these expressions do not have a common reduct. 

The lack of confluence of let-rewriting is alleviated by a strong semantic property 
of — > ln f which, combined with the adequacy to CRWL of let-rewriting that we will 
see below, may be used as a substitute for confluence in some situations. These 
questions will be treated in detail in Section |4.3.1| 

The next result characterizes — >^ -normal forms. What we do in — > ln ? derivations 
is exposing the computed part of e — its outer constructor part — concentrating it 
in the body of the resulting let, that is, the part which is not a function application 
whose evaluation is pending. This is why we call it 'Peeling lemma'. 

Lemma 3 (Peeling lemma) 



For any e, e' £ LExp, if e \. ln f e' then e' has the shape e' = let X = f(t) in e" such 
that e" G V or e" = h(F) with h G S, / C FS and t, ¥ C CTerm. 
Moreover if e = h(e\, . . . , e n ) with h G S, then 

e = h(e u . . . , e„) ^ lnf " let X = f{t) in h{h, . . . ,t n ) = e 

under the conditions above, and verifying also that ti = whenever € CTerm. 

The next property of — >' and — > ln f uses the notion of shell |e| of an expression 
e, that is the partial c-term corresponding to the outer constructor part of e. More 
precisely: 

Definition 4 (Shell of a let-expression) 



\X\ = X for X G V 

|c(ei, . . . ,e„)| = c(|ei|, . . . , |e„|) for c G CS 

\f(ei,...,e n )\ = ± foifeFS 

\let X = ei in e 2 | = |e 2 |[Jf/| ei |] 

Notice that in the case of a let-rooted expression, the information contained in the 
binding is taken into account for building up the shell of the whole expression: for 
instance \c(let X = 2 in s(X))\ — c(s(2)). 

During a computation, the evolution of shells reflects the progress towards a 
value. The next result shows that shells never decrease. Moreover, only (Fapp) may 
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change shells. As discussed above, 'peeling' steps (i.e. — > ln f- steps) just modify the 
representation of the implicit term graph corresponding to a let-expression; thus, 
they preserve the shell. 

Lemma 4 (Growing of shells) 

i) e Y ^ e' implies |e| C |e'|, for any e, e' € LExp 

ii) e — > ln f e' implies |e| = \e'\, for any e, e' £ LExp 



4.2 The CRWLi et logic 

In this section we extend the CRWL logic to deal with let-expressions, obtaining 
an enlarged framework that will be useful as a bridge to establish the connection 
between CRWL and let-rewriting. 

As in the CRWL framework, we consider partial let-expressions e G LExp±, 
defined in the natural way. The approximation order C is also extended to LExp± 
but now using the notion of context for let-expressions, which in particular implies 
that let X = e\ in C let X — e\ in e' 2 iff e\ C e[ and e 2 C e' 2 . The CRWL; et 



logic results of adding the following rule (Let) to the CRWL logic of Section 2.2 

ei -> h e 2 [X/ti\->t 

(Let) 

let X = e\ in e 2 — > t 

We write V \~CRWL lat e — > t if e — > f is derivable in the CRWL; e t-calculus using 
the program V . In many occasions, we will omit V '. 

Definition 5 (CRWL; e i- denotation) 

Given a program P, the CRWLi et - denotation of e € LExp± is defined as: 

I e l CRWL let ={t^ CTerm ± | V \~crwl m e -> t} 
We will omit the sub(super)-scripts when they are clear by the context. 

There is an obvious relation between CRWL and CRWL; et for programs and 
expressions without lets: 

Theorem 4 (CRWL vs. CRWL let ) 

For any program V without lets, and any e € Exp±: 

l e l'cRWL = HoRWXirf 

This result allows us to skip the mention to CRWL or CRWLi et when referring 
to the denotation [e] of an expression: if some let-binding occurs in e — or in the 
program wrt. which the denotation is considered — then [e] can be interpreted only 
as [ e l CRWLi et ; otherwise, both denotations coincide. 

The CRWL; et logic inherits from CRWL a number of useful properties. 

Lemma 5 

For any program e £ LExp±, t,t' E CTerm±: 

i) t->t' iff t' C t. 

ii) |e| e [4 
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iii) [e] C (|e|t)|, where for a given E C LExp± its upward closure is i?t= {e' G 
L-ExpjJ 3e e E. e C e'}, its downward closure is El= {e' e LExp±\ Be 6 
£\ e' Ce}, and those operators are overloaded for let-expressions as ef = {e}t 
and ej,= {e}J,. 

The first part of the previous result shows that c-terms can only be reduced to 
smaller c-terms. The other parts express that the shell of an expression represents 
'stable' information contained in the expression in a similar way to Lemma |4j as 
the shell is in the denotation by ii), and everything in the denotation comes from 
refining it by iii). 

The following results are adaptations to CRWL/ et of properties known for CRWL 



(Gonzalez-Moreno et al. 1999 Vado-Vi'rseda 2002). The first one states that if we 



can compute a value for an expression then from greater expressions we can reach 
smaller values. The second one says that CRWL/ et -derivability is closed for partial 
c-substitutions. 

Proposition 3 [Polarity of CRWLi et ) 

For any e, e' G LExp±, t,t' € CTerm±, if e C e' and t' C ( then e — > t implies 
e' — o t' with a proof of the same size or smaller — where the size of a CRWLj et -proof 
is measured as the number of rules of the calculus used in the proof. 



Proposition 4 (Closedness under c-substitutions of CRWLi et ) 

For any e <E LExp±, t € CTerm ± , 6 € CSubstj_, t e [e] implies t9 e {e6j. 

Compositionality is a more delicate issue. Theorem [T] does not hold for CRWL; et , 
as shown by the following example: consider the program {/(0) — » 1}, the expression 
e = f(X) and the context C = let X — in []. C[e] can produce the value 1. 
However, f(X) can only be reduced to _L, and C[_L] cannot reach the value 1. The 
point in that example is that the subexpression e needs some information from the 
context to produce a value that is then used by the context to compute the value 
for the whole expression C [e] . This information may only be the definientia of some 
variables of e that get bound when put in C; with this idea in mind we can state 
the following weak compositionality result for CRWL; et . 

Theorem 5 (Weak Compositionality of CRWLi et ) 
For any C £ Cntxt, e S LExp± 

[C[e]j = |J [C[i]] if BV(C) n FV(e) = 
te[e] 

As a consequence, {let X = ei in e 2 ] = U^elei] [ e 2[^Ai]l- 

In spite of not being a fully general compositionality result, Theorem [5] can be 
used to prove new properties of CRWL; et , like the following monotonicity property 
related to substitutions, that will be used later on. It is formulated for the par- 
tial order C over LSubst± (defined naturally as it happened for Susbt±) and the 
preorder < over LSubst ± , defined by a < a 1 iff VX e V, \a{X)\ C [a'{X)\. 
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Proposition 5 [Monotonicity for substitutions of CRWLi et ) 

If a \— a' or a < a' then [eer] C [ecr'] , for any e £ LExp± and cr, cr' £ LSubst± . 

The limitations of Theorem [5] make us yearn for another semantic notion for let- 
expressions with a better compositional behaviour. We have already seen that the 
problem with CRWL; et is the possible loss of definientia when extracting an ex- 
pression from its context. But in fact what bound variables need is access to the 
values of their corresponding definientia, as it is done in the rule (Let) where the 
value of the definiens is transmited to the body of the let-binding by applying a 
c-substitution replacing the bound variable by that value. With these ideas in mind 
we define the stronger notion of hyperdenotation (sometimes we say hyper seman- 
tics), which gives a more active role to variables in expressions: in contrast to the 
denotation of an expression e, which is a set of c-terms, its hyperdenotation |e| is 
a function mapping c-substitutions to denotations, i.e., to sets of c-terms. 

Definition 6 [Hyperdenotation) 
The hyperdenotation of an expression e £ LExp± under a program V is a function 
\ef : CSubst ± -»• Den defined by [el P 6 = {eOf. 

As usual, in most cases we will omit the mention to V . We will use sometimes 
HD as an alias for CSubst± — > Den, i.e, for the kind of objects that are hyperde- 
notations of expressions. 

The notion of hyperdenotation is strictly more powerful than the notion of 
CRWL; et denotation. Equality of hyperdenotations implies equality of denotations 
-because if [e] = [e'J then [e] = [ee] = He = [e'Je = [e'e] = [e'J- but the 
opposite does not hold: consider the program {/(0) — > 1} and the expressions f(X) 
and _L; they have the same denotation (the set {_!_}) but different hyperdenota- 
tions, as |_l_J[A/0] ^ 1 £ |/(A)|[A/0]. Hypersemantics are useful to characterize 
the meaning of expressions present in a context in which some of its variables may 
get bound, like in the body of a let-binding or in the right hand side of a program 
rule. Therefore are useful to reason about expressions put in arbitrary contexts, in 
which let-bindings may freely appear. 

Most remarkably, hyperdenotations allow to recover strong compositionality re- 
sults for let-expressions similar to Theorems [T] and [2] We find it more intuitive to 
start the analog to the latter. Semantics of contexts were defined as denotation 
transformers (Definition [2]). Analogously, the hypersemantics |C| of a context C is 
a hyperdenotation transformer defined as follows: 

Definition 7 (Hypersemantics of a context) 

Given C £ Cntxt, its hyperdenotation is a function |C| : HD — > HD defined by 
induction over the structure of C as follows: 

• ID1M - ^ 

• lh(e u ... ,C,...,e n )l^= U \KeyO,..., t,..., e n 9)j 

teie]M 

• flet X =C in ejipe = [j (let X = t in e0\ 

teIC]M 

• pet X = e in C\<pO - U PM«*]) 

*elep 
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With this notion, our first version of strong compositionality for hypersemantics 
looks like Theorem |2] 

Theorem 6 {Compositionality of hypersemantics) 
For all C € Cntxt, e € LExp± 



PN1 = 

As a consequence: |el = |e'] VC E C*ntet.|C[e]l = lC[e% 

This result implies that in any context we can replace any subexpression by an- 
other one having the same hypersemantics (and therefore also the same semantics) 
without changing the hypersemantics (hence the semantics) of the global expres- 
sion. 

In Theorems [2] and [6] the role of call-time choice is hidden in the definition of se- 
mantics and hypersemantics of a context, respectively. To obtain a version of strong 
compositionalty of hypersemantics closer to Theorem [T] and [5j we need some more 
notions and notations about hyperdenotations or, more generally, about functions 
in HD. Since they are set-valued functions, many usual set operations and rela- 
tions can be lifted naturally in a pointwise manner to HD. The precise definitions 
become indeed clearer if we give them for general sets, abstracting away the details 
about HD. We introduce also some notions about decomposing set-valued func- 
tions that will be useful for hyperdenotations. We use freely A-notation to write 
down a function in the mathematical sense; we may write Xx 6 A to indicate its 
domain A, if it not clear by the context. 

Definition 8 [Operations and relations for set- valued functions) 

Let A,B be two sets, JF the set of functions A — > V(B), and f,g € T. Then: 

i) The hyperunion of /, g is defined as / W g — Xx € A.f{x) U g(x). 

ii) More generally, the hyperunion of a family X C J 7 , written indistinctly as 
iyj X or lUI f , is defined as 

iyj x= iyj / = def xxeA.\ \ f{x) 

fex fix 

Notice that /W g = W {f,g}. 

iii) We say that / is hyperincluded in <?, written / <g g, iff Wx € A.f(x) C <?(:r). 

iv) A decomposition of / is any IC J such that ItU X = f . 

v) The elemental decomposition of / is the following set of functions of J-: 



Or, using the abbreviation Aa.{6} as a shorthand for Ax. 



{6} if x = a 
otherwise 



A/ = {Aa.{6} | aeA,bef(a)} 
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Decompositions are used to split set-valued functions into smaller pieces; elemental 
decompositions do it with minimal ones. For instance, if / : {a, b} — » V({0, 1, 2}) is 
given by /(a) = {0, 2} and f(b) = {1,2}, then A/ = {Aa.{0}, Aa.{2}, A6.{1}, Xb.{2}}. 

Hyperinclusion and hyperunion share many properties of standard set inclusion 
and union. Some of them are collected in the next result, that refer also to decom- 
positions: 

Proposition 6 

Consider two sets A, B, and let jF be the set of functions A — > V(B). Then: 

i) <s is indeed a partial order on _F, and A/ is indeed a decomposition of / G J 7 , 
i.e., W (A/) = /. 

ii) Monotonicity of hyperunion wrt. inclusion: for any X\^X% C T 

I 1 C X 2 implies lUJ Zi <e IUJ X 2 

iii) Distribution of unions: for any X\^X 2 C T 

iyj (iiui 2 ) = (iyj x x )n (iyj x 2 ) 

iv) Monotonicity of decomposition wrt. hyperinclusion: for any /i, /a £ J 

/i <£ /2 implies A/i C A/ 2 

We will apply all these notions, notations and properties to the case when A = 
CSubst ± and B = CTerm± (i.e. V{B) = Den and therefore T = HD). Therefore, 
we can speak of the hyperunion of two hyperdenotations, or of a family of them, 
we can elementarily decompose a hyperdenotation, etc. 

Proposition 7 (Distributivity under context of hypersemantics unions) 

ici(w h) = iyj icj<p 

ipeH 

With this result we can easily prove our desired new version of a strong com- 
positionality result for hypersemantics, with a style closer to the formulations of 
Theorems [T] and [5j This new form of compositionality will be used in Section [ITT] for 
building a straightforward proof of the adequacy of a transformation that otherwise 
becomes highly involved by using other techniques. 

Theorem 7 (Compositionality of hypersemantics, version 2) 
For any C € Cntxt, e € LExp±: 

[C[e]l = LUJ \C\<p, for any decomposition H of |el 

In particular: |C[e]l = LUJ |ClJ<p. 

■peAlel 

As a consequence: H = |e'] VC E Cntxt.lC[e]l = IC[e']]. 
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Proof 

!C[e]l = pi [[el by compositionality v.l (Theorem |6f 

= IC1(W H) by definition of decomposition (Def7[8] iv) 

= ItU |CJ]<p by distributivity (Proposition ff\ 

□ 

As happened with Theorems [T] and [2] with respect to denotations, Theorems 
[6] and [7] are different aspects of the same property, which shows that the hyper- 
semantics of a whole let-expression depends only on the hypersemantics of its 
constituents; it also allows us to interchange in a context any pair of expressions 
with the same hypersemantics. This is reflected on the fact that we have attached 
M = le'l & VC G Cntxt.K[e]l = |C[e']J as a trivial consequence both in Theo- 
rem [6] and Theorem [7j Moreover, Theorem [6] can also be proved by a combination 
of Theorem [7] and P repositions [6] and[7j in a similar way to the proof for Theorem 
above. 

IC[e]l = lUJ Klip by compositionality v. 2 (Theorem ffh 

= ICJ](iyJ (A[eD) by distributivity (Proposition [7f 

= PHe J because A|e| decomposes e (Proposition [6] i)) 

Therefore Theorems [6] and [7] are results with the same strength, two sides of the 
same coin that will be useful tools for reasoning with hypersemantics. 

To conclude, we present the following monotonicity property under contexts of 
hypersemantics, which will be useful in the next section. 

Lemma 6 {Monotonicity under contexts 0/ hypersemantics) 
For any C € Cntxt, pi,p2 € HD: 

ipi <e ip2 implies that KJtpi <s fC\p2 

Proof 

Assume <p>\ <g tp^. Then: 

Pl^a = [C](IUJ (Avji)) by Proposition § 1) 

= pKltU {Xfi.{t} I [i G CSubst±,te ipifj,}) by definition of A 
<E PKltU {Xfi.{t} I /1 G CSubst±,te ip 2 (i}) by Proposition |6] «J 
= plilUJ (A<^ 2 )) by definition of A 

= |CJ<£>2 by Proposition [6] i) 

□ 

We have now the tools needed to tackle the task of formally relating CRWL and 
let-rewriting. 

4-3 Equivalence of let-rewriting to CRWL and CRWLi et 

In this section we prove soundness and completeness results of let-rewriting with 
respect to CRWL iet and CRWL. 
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4-3.1 Soundness 

Concerning soundness we want to prove that —r -steps do not create new CRWL- 
semantic values. More precisely: 

Theorem 8 {Soundness of let-rewriting) 

For all e,e' G LExp, if e el then |e'] C [e]. 

Notice that because of non-determinism C cannot be replaced by = in this the- 
orem. For example, with the program V = {coiri — > 0, coin — > 1} we can perform 
the step coin -> l 0, for which [0] = {0, _L}, {corn} ={0,1, _L}. 

It is interesting to explain why a direct reasoning with denotations fails to prove 
Theorem [8) 

A proof could proceed straightforwardly by a case distinction on the rules for 
— V to prove the soundness of a single — y step. The problem is that the case for 
a (Contx) step would need the following monotonicity property under context of 
CRWLz e t denotations: 

[e] C [e'] implies [C[e]] C [C[e']J 

Unfortunately, the property is false, for the same reasons that already explained 
the weakness of Theorem [5] the possible capture of variables when switching from 
e to C[e}. 

Counterexample 1 

Consider the program V = {/(0) -> 1}. We have \f{X)] = {_L} C {_L,0} = [0], 
but when these expressions are placed within the context let X — in [ ] we obtain 
{let X = 0in f{X)j = {_L, 1} % {_L, 0} = [let X = in 0]. 

The good thing is that we can overcome these problems by using hyperseman- 
tics. Theorem [8] will be indeed an easy corollary of the following generalization to 
hypersemantics. 

Theorem 9 (Hyper-Soundness of let-rewriting) 
For all e,e' G LExp, if e e' then [e'l <e fej. 

And, in order to prove this generalized theorem, we also devise a generalization of 
the faulty monotonicity property of CRWL; et denotations above mentioned. That 
generalization is an easy consequence of the compositionality and monotonicity 
under contexts of hypersemantics. 

Lemma 7 

For all e,e' € LExp± and C G Cntxt, if |el m fe'l then |C[e]J € |C[e']][. 
Proof 



{C[e]l = 
^ Pile' 
= IC[e']l 



□ 



by Theorem 
by Lemma [6 
by Theorem 



as lei m iei 



Gi 
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With the help of Lemma [7| we can now prove Theorem [9] by a simple case dis- 
tinction on the rules for — y and a trivial induction on the length of the derivation. 
Now, Theorem [8] follows as an easy consequence. 

Proof for Theorem^ 

Assume e -V* e' . By Theorem [9] we have |e'J <g |ej, and therefore \e'0\ C [e6>] for 
every £ CSubst±. Choosing 9 = e (the empty substitution) we obtain [e'J C [e] 
as desired. □ 

The moral then is that when reasoning about the semantics of expressions and 
programs with lets it is usually better to lift the problem to the hypersemantic world, 
and then particularize to semantics the obtained result. This is done, for instance, 
in the following result: 

Proposition 8 {The ~^ ln f relation preserves hyperdenotation) 
For all e,e' £ LExp, if e ->> r e' then [el = |e'][— and therefore [e] = [e']. 

This result mirrors semantically the fact that — y n * performs transitions between 
let-expressions corresponding to the same implicit term graph. Proposition [8] in 
some sense lessens the importance of the lack of confluence for the — > ln f relation 
seen in Section [4.1| Preservation of hyperdenotation may be used in some situations 
as a substitute for confluence, specially taking into account that let-rewriting and 
CRWL; et enjoy a really strong equivalence, as it is shown in this section. 

Finally, we combine the previous results in order to get our main result concerning 
the soundness of let-rewriting with respect to the CRWL; et calculus: 

Theorem 10 (Soundness of let-rewriting) 
For any program V and e £ LExp we have: 

i) e — > l * e' implies V \~cRWL let e — > |e'|, for any e' S LExp. 

ii) e-) 1 *t implies V \^cRWL lct e — > t, for any t € CTerm. 

Furthermore, if neither V nor e have lets then we also have: 

iii) e— >' e' implies V h crwl e — > |e'|, for any e' £ LExp. 

iv) e— > l t implies V \~crwl e —> t, for any t £ CTerm. 



Proof 

Assume e— > l *e'. Then, by Theorem 
|e'| £ \e'}cRWL let by Lemma [5} we get 
Trivial by (i), since \t\ — t for any t £ 
Just combining i) and Theorem [4] 
Just combining ii) and Theorem |4j 
□ 



|i]we have {e'] C R.WL lH Q \e\cRWL let - Since 
W\ € [e] ci?v^L lrf , which means e -o |e'|. 
CTerm. 
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4-3.2 Completeness 



Now we look for the reverse implication of Theorem 10 that is, the completeness 
of let-rewriting as its ability to compute, for any given expression, any value that 
can been computed by the CRWL-calculi. With the aid of the Peeling Lemma [3] we 
can prove the following strong completeness result for let-rewriting, which still has 
a certain technical nature. 

Lemma 8 (Completeness lemma for let-rewriting) 
For any e £ LExp and t £ CTerm± such that t ^_L, 

e — > t implies e — > l let X = a in t! 

for some t! £ CTerm and a C LExp such that t C \let X — a in t'\ and |aj| =± 
for every ai £ a. As a consequence, t C f'[X/ _L]. 

Note the condition t is essential for this lemma to be true, as we can see by 
taking V = {loop — > loop} and e = loop: while loop — >_L, the only LExp reachable 
from loop is Zoop itself. 

Our main result concerning completeness of let-rewriting follows easily from 
Lemma [8] It shows that any c-term computed by CRWL or CRWL/ et for an expres- 
sion can be refined by a let-rewriting derivation; moreover, if the c-term is total, 
then it can be exactly reached by let-rewriting. 

Theorem 11 (Completeness of let-rewriting) 

For any program V , e £ LExp, and t £ CTerm± we have: 

i) V e -o t implies e — > l e' for some e' £ LExp such that t C |e'| 

ii) Besides, if t £ CTerm then V \~CRWL tet e—>t implies e—r t 

Furthermore, if neither V nor e have lets then we also have 

iii) V h crwl e—ot implies e-V e' for some e' £ LExp such that t C |e'| 

iv) Besides, if t £ CTerm then V V crwl e—ot implies e— > l t 

Proof 

Regarding part i), if t =_L then we are done with e— y e as Ve, _LC |e|. On the 
other hand, if t then by Lemma [8] we have e— > l *let X — a in t' such that 
t C |Zet Z= a in t'\. 

To prove part iij, assume V ^cRWL let e—ot. Then, by Lemma [8j we get 
e^r 1 let X = a in t' such that t C \let X = a in t\ = t'[X/A.], for some G 
CTerm, a C LExp. As i € CTerm then i is maximal wrt. C, so i C i'[A/_L] implies 
i'[X/T| = t, but then e CTerm so it must happen that FV(t') nl=0 

and therefore if = t'[A/_L] = t. But then let X = a in t' —t l t' = t by zero or more 
steps of (Elim), so e— > l *let X = a in if —> l *t, that is e—t 1 *t. 

Finally, parts ii) and iv) follow from ii), iii) and Theorem|4j □ 

As an immediate corollary of this completeness result and soundness (Theorem 
10 1, we obtain the following result relating let-rewriting to CRWL and CRWL; et 



for total c-terms, which gives a clean and easy way to understand the formulation 
of the adequacy of let-rewriting. 
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Corollary 1 {Equivalence of CRWLi et and let-rewriting for total values) 
For any program V, e € LExp, and t € CTerm we have 

V \-CRWL, et e -> t iff e *i. 

Besides if neither T 3 nor e have lets then we also have 

V ^crwl e -> t iff e^' *i. 

As final consequence of Theorems [lO] and [TT] we obtain another strong equiv- 
alence result for both formalisms, this time expressed in terms of semantics and 
hypersemantics. 

Theorem 12 {Equivalence of CRWLi et and let-rewriting) 
For any program V and e £ LExp: 

i) [e] = {|e'| e% 

ii) lei = X6 £ CSubst±.({\e'\ \ e <J}\) 

where 4- is the downward closure operator defined in Lemma [5] 
Proof 

i) We prove both inclusions. Regarding [e] C {|e'| | e — > l e'}l, assume t £ [e]. By 



Theorem 



11 



there must exist some e' £ LExp such that e — > l e' and t C |e'|, 
therefore |e'| € {|e'| | e — V e'}. But this, combined with f C |e'|, results in 
te {|e'| | e^ r e'}i. 

Regarding the other inclusion, consider some t € {|e'| | e — e'}4- By definition of 
the I operator, there must exist some e' € LExp such that £ C |e'| and e e '. 



But that implies |e'| € [e], by Theorem 10 which combined with t C |e'| and the 



polarity property (Proposition |3| gives us that t £ [e] . 
ii) Trivial by applying the previous item and the definition of hypersemantics of an 
expression. 

□ 



5 Semantic reasoning 

Having equivalent notions of semantics and reduction allows to reason interchange- 
ably at the rewriting and semantic levels. In this section we show the power of such 
technique in different situations. We start with a concrete example, adapted from 



(Lopez-Fraguas et al. 2009b), where semantic reasoning leads easily to conclusions 



non-trivially achievable when thinking directly in operational terms. 
Example 4 

Imagine a program using constructors a, b £ CS°, c £ CS 1 , d £ CS 2 and defining a 
function / £ FS 1 for which we know that f{a) can be let-rewritten to c(a) and c{b) 
but no other c-terms. Consider also an expression e having f{a) as subexpression, 
i.e., e has the shape C[f{a)]. We are interested now in the following question: can 
we safely replace in e the subexpression f{a) by any other ground expression e' 
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let-reducible to the same set of values^]? By safely we mean not changing the values 
reachable from e. 

The question is less trivial than it could appear. For instance, if reductions were 
made with term rewriting instead of let-rewriting — i.e., considering run-time in- 



stead of call-time choice — the answer is negative ( Lopez- Fraguas et al. 2009b). To 
see that, consider the program 

/(a) c(a) g -> a h(c(X)) ->• d(X, X) 
f(a) -> c(b) g^rb 

and the expressions e = h(f(a)) and e' = c(g). All this is compatible with the 
assumptions of our problem. However, e is reducible by term rewriting only to 
d{a,a) and d(b,b), while replacing f(a) by e' in e gives h(c{g)), which is reducible 
by term rewriting to two additional values, d(a, b) and d(b, a); thus, the replacement 
of /(a) by e' has been unsafe. 

However, the answer to our question is affirmative in general for let-rewriting, as 
it is very easily proved by a semantic reasoning using compositionality of CRWL/ et : 
the assumption on /(a) and e' means that they have the same denotation [/(a)] — 
[e'J = {c(a),c(b)} ! and, since they are ground, the same hyperdenotation [/(a)] = 
|e'| = \8.{c(a), c(b)} J.. By compositionality of hypersemantics, C[f(a)] and C[e'] 
have the same (hyper)denotation, too. By equivalence of CRWL; et and let-rewriting 
this implies that both expressions reach the same value by let-rewriting. 

Despite its simplicity, the example raises naturally interesting questions about 
replaceability, for which semantic methods could be simpler than direct reasonings 
about reduction sequences. This is connected to the full abstraction problem that 



we have investigated for run-time and call-time choice in (Lopez-Fraguas et al 



2009b Lopez-Fraguas and Rodrfguez-Hortala 2010). 



Semantic methods can be also used to prove the correctness of new operational 
rules not directly provided by our set of let-rewriting rules. Such rules can be useful 
for different purposes: to make computations simpler, for program transformations, 
to obtain new properties of the framework, . . . Consider for instance the following 
generalization of the (Letln) rule in Figure [5j 

(CLetln) C[e] let X = e in C[X], if BV(C) n FV(e) = and X is fresh 



This rule allows to create let-bindings in more situations and to put them in outer 
positions than the original (Letln) rule. If we have not considered it in the defini- 
tion of let-rewriting is because it would destroy the strong termination property of 
Proposition [2j as it is easy to see. However, this rule may shorten derivations. For 
instance, the derivation in Example [2] could be shortened to: 



3 More precisely, to the same set of shells in the sense of Theorem Il2| part i). 
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heads(repeat(coin)) (CLetln) 

— > let C — coin in heads(repeat(C)) (Fapp) 

— s> let C — coin in heads(C : repeat(C)) (Fapp) 

— > let C — coin in heads(C : C : repeat(C)) (CLetln) 
—¥ let C — coin in let X — repeat(C) in heads(C : C : X) (Fapp) 

—¥ let C = coin in let X — repeat(C) in (C, C) (Elim) 

— > let C — coin in (C, C) (Fapp) 

-V letC = in (C, C) (Bind) 
-t 1 (0,0) 



Reasoning the correctness of (CLetln) rule is not difficult by means of semantic 
methods. We only need to prove that the rule preserves hypersemantics. 

Lemma 9 

If BV(C) n FV(e) = and X is fresh, then [C[e]f = flet X = e in C[X\\. 
Proof 

Assume an arbitrary 9 £ CSubst±: 

flet X = e in C[X]J0 = [(let X 
= {let X = e0 in C9[X]j 
= U l(C9[X])[X/t]l 

teled] 

= U »]] 

telee] 

= \co[ee]\ 

= \(C[e])9] = IC[ep 

□ 

The rule (CLetln) is indeed used in some of the proofs in the online appendix, 
together with another derived rule: 

(Dist) C[let X = ei in e 2 ] — > l let X — e\ in C[e 2 ], 
if BV(C) n FV(e x ) = and X <£ FV(C) 

which also preserves hypersemantics: 

Lemma 10 

If BV(C) n FV(ei) = and X <£ FV(C) then fC[let X = e x in e 2 ]l = flet X = 
ei in C[e 2 ]]. 

These ideas can be made more general. Consider the equivalence relation e\ x 
e 2 iff |ei| = |e 2 l. This relation is especially relevant because e% x e 2 iff VC G 
Cntxt.\C[e]\ = lC[e% by Theorem § We can contemplate x as an abstract, 
although non-effective, reduction relation, of which the relations — > ln ? of Section |4] 
and the rules (CLetln) and (Dist) are particular subrelations. It is trivial to check 
that, by construction, the combined relation — > l U x is sound and complete wrt. 
CRWL ;et . We can use that relation to reason about the meaning or equivalence 
of let-expressions and programs. We could also employ it in the definition of on- 
demand evaluation strategies for let-rewriting. As any subrelation of — > l U x is 



= ein C[X))9j 

as X is fresh 
by Theorem [5] 

as X is fresh 

by Theorem [5] 
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sound wrt. CRWL/ et , an approach to strategies for let-rewriting could consist in 
defining a suitable operationally effective subrelation of — > l U x and then proving 
its completeness and optimality (if it is the case). 



5.1 A case study: correctness of bubbling 



We develop here another nice application of the 'semantic route', where let-rewriting 
provides a good level of abstraction to formulate a new operational rule — bubbling — 
while the semantic point of view is appropriate for proving its correctness. 



Bubbling, proposed in (Antoy et al. 2007), is an operational rule devised to 



improve the efficiency of functional logic computations. Its correctness was formally 



studied in ( Antoy et al. 2006 ) in the framework of a variant ( Echahed and Janodet 



1998) of term graph rewriting. The idea of bubbling is to concentrate all non- 
determinism of a system into a choice operation ? defined by the rules X ? Y — >• X 
and X ? Y — > Y , and to lift applications of ? out of their surrounding context, as 



illustrated by the following graph transformation taken from ( Antoy et al. 2006 1 : 



not not 

\ / 

? 

/ \ 

true false 



c c 

'bub 

not not not not 
W V >i 

true false 



As it is shown in (Antoy et al. 2007), bubbling can be implemented in such a way 



that many functional logic programs become more efficient, but we will not deal 
with these issues here. 

Due to the technical particularities of term graph rewriting, not only the proof of 



correctness, but even the definition of bubbling in (Antoy et al. 2007 Antoy et al 



2006) are involved and need subtle care concerning the appropriate contexts over 



which choices can be bubbled. In contrast, bubbling can be expressed within our 
framework in a remarkably easy and abstract way as a new rewriting rule: 

(Bub) C[ei?e 2 ] -^ bub C[ei]?C[e 2 ], for e u e 2 € LExp 

With this rule, the bubbling step corresponding to the graph transformation of 
the example above is: 

let X = true ? false in c(not(X),not(X)) -^ bub 

let X — true in c{not{X) , not(X)) 1 let X — false in c(not(X) , not(X)) 

Notice that the effect of this bubbling step is not a shortening of any existing let- 
rewriting derivation; bubbling is indeed a genuine new rule, the correctness of which 
must be therefore subject of proof. Call-time choice is essential, since bubbling is 
not correct with respect to ordinary term rewriting, i.e., run-time choice. 



Counterexample 2 (Incorrectness of bubbling for run-time choice") 

Consider a function pair defined by the rule pair(X) — > c(X, X) and the expression 
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pair{0 ? 1) for c € CS 2 and 0, 1 € C5°. Under term rewriting/run-time choice the 
derivation 

pair{0 ? 1) c(0 ? 1, ? 1) -> c(0, ? 1) c(0, 1) 

is valid. But if we performed the bubbling step 

pair{0 ? 1) ^ bub pair{0) ? pair(l) 

then the c-term c(0, 1) would not be reachable anymore by term rewriting from 
pair{0) ? pair{l). 

Formulating and proving the correctness of bubbling for call-time choice becomes 
easy by using semantics. As we did before, we simply prove that bubbling steps 
preserve hypersemantics. We need first a basic property of the (hyper) semantics of 
binary choice ?. Its proof stems almost immediately from the rules for ? and the 
definition of CRWL-(hyper)denotation. 

Proposition 9 {(Hyper) semantic properties of 1) 
For any e\, e 2 £ LExp± 

i) [ei ? ea] = [ej U [e 2 ] 

ii) l ei ? e 2 J - lej y [ej 

Combining this property with some of the powerful hypersemantic results from 
Section |4.2| leads to an appealing proof of the correctness of bubbling. 

Theorem 13 {Correctness of bubbling for call-time choice) 
If e -^ bub e' then |el = fe% for any e, e' € LExp. 



Proof 

If e -^ bub e' then e = C[e x ? e 2 ] and e' = C[e{\ ? C[e 2 ], for some ei,e 2 . Then: 



IC[ei ? e 2 ]l = ICHei ? e 2 ] by Theorem || 
= [CldeilUfl Ie 2 l) by Proposition 

= nieil ^ MM by Proposition 



IC[ ei ]Iy lC[e 2 ]l byTheorem|6] 
[C[ei] ? C[e 2 ]l by Proposition |9] izj 



□ 



This property was proved also for the HO case in (Lopez-Fraguas et al. 2008). 
But the proof given here is much more elegant thanks to the new semantic tools 
developed in Section |4~2} 



6 Let-narrowing 

It is well known that there are situations in functional logic computations where 
rewriting is not enough and must be lifted to some kind of narrowing, because 
the expression being reduced contains variables for which different bindings might 
produce different evaluation results. This might happen either because variables are 
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already present in the initial expression to reduce, or due to the presence of extra 
variables in the program rules. In the latter case let-rewriting certainly works, but 
not in an effective way, since the parameter passing substitution in the rule (Fapp) 
of Figure [5] (page 16 ) 'magically' guesses the appropriate values for those extra 
xiables (see Example [6] below) . Some works ( Antoy and Hanus 2006 Dios-Castro 
a nd Lopez-Fraguas 2007[ Brafiel and Huch 20071 have proved that guessing can 



be replaced by a systematic non-deterministic generation of all (ground) possible 
values. However, this does not cover all aspects of narrowing, which is able to 
produce non-ground answers, while generator functions are not. In this section we 
present let-narrowing, a natural lifting of let-rewriting devised to effectively deal 
with free and extra variables. 

Using the notation of contexts, the standard definition of narrowing as a lifting 
of term rewriting in ordinary TRS's is the following: C[f(t)} C8[r8], if 8 is a 
mgu of f(t) and f(s), where f(s) — > r is a fresh variant of a rule of the TRS. The 
requirement that the binding substitution 8 is a mgu can be relaxed to accomplish 



with certain narrowing strategies like needed narrowing (Antoy et al. 2000), which 
use unifiers but not necessarily most general ones. 

This definition of narrowing cannot be directly translated as it is to the case of let- 
rewriting, for two reasons. First, binding substitutions must be c-substitutions, as 
for the case of let-rewriting. Second, let-bound variables should not be narrowed, but 
their values should be rather obtained by evaluation of their binding expressions. 
The following example illustrates some of the points above. 

Example 5 

Consider the following program over Peano natural numbers: 

+ Y -> Y even(X) -> if (Y + Y == X) then true 

s(X)+Y -> s(X + Y) if true then Y -> Y 

0==04 true s{X) == s(Y) -> X == Y 

== s{Y) -> false s[X) == -> false 

coin — > coin — > s(0) 

Notice the extra variable Y in the rule for even. The evaluation of even(coin) by 
let-rewriting could start as follows: 

evenicoin) — r let X = coin in even(X) 

— > let X — coin in if (Y + Y == X) then true 

— > l let X = coin in let U = Y + Y in let V = (U == X) in if V then true 
-+ l *let U = Y + Y in let V = (U == 0) in if V then true 

Now, because all function applications involve variables, the evaluation cannot con- 
tinue merely by rewriting, and therefore narrowing is required instead. We should 
not perform standard narrowing steps that bind already let-bound variables; oth- 
erwise, the syntax of let-expressions can be lost. For instance, narrowing at if V 
then true generates the binding [V/true] that, if applied naively to the surrounding 
context, results in the syntactically illegal expression: 

let U=Y+Y in let true=(U==0) in true 
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(X) e e' if e->'e' using _X"G {Letln, Bind, Elim, Flat} in Figure [H] (page |l6| . 

(Narr) f (?) ~> l g r8, for any fresh variant (f(p) — > r) G P and 6< G CSubst such that 
/(t)0 = /(p)0. 

(Contx) C[e] C0[e'], for C 7^ [], if e~^ l oe' by any of the previous rules, and if 
the step is (Narr) using (f(p) — > r) 6 V, then: 

(i) dom{6) n BV(C) = 

(ii) vRan{0\\ varm ) n BV(C) = 



Fig. 6. Rules of the let-narrowing relation 



What is harmless is to perform narrowing at Y + Y (Y is a free variable) . This 
gives the substitution [Y/0] and the result for the subexpression Y + Y. Placing 
it in its surrounding context, the derivation continues as follows: 

let U = in let V = (U == 0) in if V then true 

let V = (0 == 0) in if V then true 
— > l let V — true in if V then true 
— > l if true then true — true 

The previous example shows that let-narrowing must protect bound variables 
against substitutions, which is the key observation for defining narrowing in pres- 
ence of let-bindings. 

The one-step let-narrowing relation e~-+ ! ge' (assuming a given program V) is 
defined in Figure [6| 

• The rule (X) collects (Elim), (Bind), (Flat), (Letln) of — ^ , that remain the 
same in -w', except for the decoration with the empty substitution e. 

• The rule (Narr) performs a narrowing step in a proper sense. To avoid un- 
necessary loss of generality or applicability of our approach, we do not impose 
to be a mgu. For the sake of readability, we will sometimes decorate (Narr) 
steps with 0\Fv(f(t)) instead of 9, i.e., with the projection over the variables 
in the narrowed expression. 

• The rule (Contx) indicates how to use the previous rules in inner positions. 
The condition C ^ [ ] simply avoids trivial overlappings of (Contx) with the 
previous rules. The rest of the conditions are set to ensure that the combina- 
tion of (Contx) with (Narr) makes a proper treatment of bound variables: 

— (i) expresses the protection of bound variables against narrowing justi- 
fied in Example [5] 

— (ii) is a rather technical condition needed to prevent undesired situations 
when the narrowing step has used a program rule with extra variables 
and a unifier 9 which is not a mgu. Concretely, the condition states that 
the bindings created by 9 for the extra variables in the program rule do 
not introduce variables that are bound by the surrounding context C. 
To see the problems that can arise without (ii), consider for instance 
the program rules / — > Y and loop — > loop and the expression let X = 
loop in f . A legal reduction for this expression, respecting condition (ii) 
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could be the following: 

let X = loop in f ~-»' e let X = loop in Z 

by applying (Naxr) to / with 6 — e taking the fresh variant rule / — > 
Z, and using (Contx) for the whole expression. However, if we drop 
condition (ii) we could perform a similar derivation using the same fresh 
variant of the rule for /, but now using the substitution 9 = [Z/X]: 

let X — loop in / -w' £ let X = loop in X 

which is certainly not intended because the free variable Z in the previ- 
ous derivation appears now as a bound variable, i.e., we get an undesired 
capture of variables. 

We remark that if the substitution 8 in (Narr) is chosen to be a standard 
mgrj^Jof f(t) and f(p) (which is always possible) then the condition (ii) 
is always fulfilled. 

The one-step relation ~->'g is extended in the natural way to the multiple-steps 
narrowing relation , which is defined as the least relation verifying: 

e e e-^ l Sl ei^ l e 2 ■ ■ ■e n ^ l 9n e' =>• e -~^ l 01 6n e' 

We write e ~^ l g e' for a n-steps narrowing sequence. 

Example 6 

Example [5] essentially contains already a narrowing derivation. For the sake of 
clarity, we repeat it here making explicit the rule of let-narrowing used at each step 
(maybe in combination with (Contx), which is not written). Besides, if the step 
uses (Narr), the narrowed expression is underlined. 



even(coin) -^> l e 


(Letln) 


let X — coin in even(X) t 


(Narr) 


let X — coin in if Y + Y == X then true ~^>[ 


(Letln 2 , Flat) 


let X — coin in let U = Y + Y in 




let V = (U == X) in if V then true^> l £ 


(Narr) 


let X = in let U = Y + Y in 




let V = (U == X) in if V then true-^ l t 


(Bind) 


let U = Y+Y in let V=(U==0) in if V then true-^\ Y /o] 


(Narr) 


let U = 0inletV =(U == 0) in if V then true ~>' e 


(Bind) 


let V = (0 == 0) in if V then true-^ l e 


(Narr) 


let V = true in if V then true^ 1 e 


(Bind) 


if true then true-^ l e 


(Narr) 


true 





Notice that all (Narr) steps in the derivation except one have e as narrowing 
substitution (because of the projection over the variables of the narrowed expres- 
sion), so they are really rewriting steps. An additional remark that could help to 

4 By standard mgu of t, s we mean an idempotent mgu 6 with dom(9) Uran(9) C var(t) Uvar(s). 
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further explain the relationship between the let-narrowing relation ~^> l and the let- 
rewriting relation — y is the following: since we have even(coin) true for some 



0, but even(coin) is ground, Theorem 14 in next section ensures that there must 
be also a successful let-rewriting derivation even(coin) — * true. This derivation 
could have the form: 

even(coin) — > l (Letln) 
let X — coin in even(X) — y (Fapp) 
let X — coin in if (0 + == X) then true^r 1 
— y true 



The indicated (Fapp)-step in this let-rewriting derivation has used the substi- 
tution [Y/0], thus anticipating and 'magically guessing' the correct value of the 
extra variable Y of the rule of even. In contrast, in the let-narrowing derivation the 
binding for Y is not done while reducing even(X) but in a later (Narr)-step over 
Y + Y. This corresponds closely to the behavior of narrowing-based systems like 
Toy or Curry. 



6.1 Soundness and completeness of the let-narrowing relation 

In this section we show the adequacy of let-narrowing wrt. let- rewriting. From now 
on we assume a fixed program V . 

As usual with narrowing relations, soundness results are not difficult to formulate 
and prove. The following soundness result for -w z states that we can mimic any 
derivation with — >' by applying over the starting expression the substitution 
computed by the original let-narrowing derivation. 

Theorem 14 (Soundness of the let-narrowing relation ~-» ) 
For any e, e' € LExp, e ~^> l e e' implies eQ * e' . 

Completeness is more complicated to prove. The key result is a generalization 



to let-rewriting of Hullot's lifting lemma (Hullot 19801 for classical term rewriting 



and narrowing. It states that any rewrite sequence for a particular instance of an 
expression can be generalized by a narrowing derivation. 



Lemma 11 (Lifting lemma for the let-rewriting relation — > l ) 

Let e, e' e LExp such that e6 — > l * e' for some € C'Subst, and let W, B C V with 
dom(9) U FV(e) C W, BV(e) C B and (dom(6) U vran(9)) n B = 0, and for each 
(Fapp) step of eO — > l e' using a rule R 6 V and a substitution 7 6 CSubst then 
vran("f\ V Extra(R)) n8 = 0. Then there exist a derivation e ~-*-> l * a e" and 9' € C'Subst 
such that: 

(i) e"6' = e' (ii) o& = 9[W] (hi) (dom(9') U vran(9')) n 6 = 



Besides, the let-narrowing derivation can be chosen to use mgu's at each (Narr) 
step. Graphically: 
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With the aid of this lemma we are now ready to state and prove the following 
strong completeness result for 

Theorem 15 {Completeness of the let-narrowing relation ) 



Let e, e' £ LExp and 9 g CSubst. If eO - 



then there exist a let-narrowing 



derivation e 



and 9' € CSubst such that e"6' = ef and a& = 9[FV(e)}. 



Proof 

Applying Lemma [ll] to e6\ PV (e) * e ' with W = i*V(e) and £ = BV(e), as 
e^|p-y( e ) = e# and the additional conditions over B hold by the variable convention. 
□ 

Finally, by combining Theorems [14] and [l5j we obtain a strong adequacy theorem 
for let-narrowing with respect to let-rewriting. 

Theorem 16 {Adequacy of the let-narrowing relation wrt. — > l ) 
Let e,ei € LExp and 9 £ CSubst, then: 



there exist a let-narrowing derivation e e 2 and 
some ff e CSubst such that o9' = 9[FV{e)}, e 2 9' = e x 



Proof 

(=>) Assume e9 — > l e\. As e9\pv{e) = e9 then trivially e9\pv( e )— > l &\< We can 



apply Lemma 11 taking W = FV{e) to get e e 2 such that there exists 
9' e CSu&si with ct9' = 9\ FV{e) [W] and e 2 0' = e x . But as W = FV(e) then 



<70' 



|FV(< 



,[W] implies <t0' = 0[FV(e) 



(^1 



We remark that the lifting lemma ensures that the narrowing derivation can be 
chosen to use mgu's at each (Narr) step. 

Assume e ■*+v a e 2 and 9' under the conditions above. Then by Theorem 
we have ea — > l *e 2 . As -V is closed under c-substitutions (Lemma ^ then 
eo9' -V *e 2 9'. But as aO 1 = 0[FV(e)], then e9 = ea& -V *e 2 0' 
□ 



14 



6.2 Organizing computations 

Deliberately, in this paper we have kept the definitions of let-rewriting and nar- 
rowing apart from any particular computation strategy. In this section we explain 
rather informally how the ideas of some known strategies for functional logic pro- 
gramming (Antoy 20051 can be adapted also to our formal setting. For the sake 
of brevity we focus only on let-narrowing computations. As a running example, 
consider the program 
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leq(0,Y) -> true f(0) -> 

ieg(s(X),0) -> /a/se 
«eg(s(X), s(F)) -> leq(X,Y) 

and the initial expression leq(X, f(Y)) to be let-narrowed using it. 

As a first remark, when designing a strategy one can freely use 'peeling' steps in a 
don't care manner using the relation — > ln f (Definition]^]), since it is terminating and 
(hyper-)semantics-preserving. In our case one step suffices: leq(X, f(Y)) ^ Jet U = 
f(Y) in leq(X, U). After a peeling (multi-)step, a (Narr) step must be done. Where? 
Certainly, the body leq(. . .) must be narrowed at some point. One don't know pos- 
sibility is narrowing at leq(X, U) using the first rule for leq that does not bind U: 
let U — f(Y) in leq(X, U) '[x/o]^ e t U = f(Y) in true. A new peeling step leads 
to a first final result true, with computed substitution [-X/0]. 

The second and third rules for leq could lead to more results. Those rules have 
non-variable patterns as second arguments, and then the bound variable U in 
leq(X, U) inhibits a direct (Narr) step in that position. Typically it is said that 
U is demanded by those leq rules. Therefore, we narrow f(Y) to get values for U, 
and then we 'peel': 

let U = f(Y) in leq(X,U) ^\ Y /o]let U = in leq{X,U) ^ l Jeq(X,0) (1) 

The computation proceeds now by two don't know choices using the rules for leq, 
leading to two more solutions (true, [Y/0, X/0]) and (false, [Y/0,X/s(Z)]). 

This implicitly applied strategy can be seen as a translation to let-narrowing 



of lazy narrowing ( Moreno- Navarro and Rodriguez- Artalejo 1992 Alpuente et al. 



2003). As a known drawback of lazy narrowing, notice that the second solution 



(true, [Y/0, X/0]) is redundant, since it is less general than the first one (true, [A/0]). 
Redundancy is explained because we have narrowed the expression /(V) whose eval- 
uation was demanded only by some of the rules for the outer function application 
leq(X, f(Y)), but after that we have used the rules not demanding the evaluation 
(the first rule for leq). This problem is tackled successfully by needed narrowing 
( Antoy et al. 2000| which takes into account, when narrowing an inner expression, 
what are the rules for an outer function application demanding such evaluation. A 
needed narrowing step 'anticipates' the substitution that will perform these rules 
when they are to be applied. The ideas of needed narrowing can be adapted to our 
setting. In our example, we get the following derivation instead of (1): 

let U = f(Y) in leq(X, U) ^ l [X / s (Z),Y/o]let U = in leq(s(Z), U) ~> l e 
leq(s(Z),0) ^ l Jalse 1 ' 

The first step does not use a mgu. This a typical feature of needed narrowing, and 
is also allowed by let-narrowing steps. Needed narrowing steps rely on definitional 
trees that structure demandness information from the rules of a given function. This 
information can be embedded also into a program transformation. There are simple 
transformations for which the transformed program, under a lazy narrowing regime 
using mgu's, obtains the same solutions than the original program ( Zartmann 1997 ), 
although it is not guaranteed that the number of steps is also preserved. In our 
example, the definition of leq can be transformed as follows: 
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leq(0 } Y) -> true leqS{X, 0) -> /a^se 

«eg(s(X), F) -> ZeqS^A, F) ZegS^X, s(F)) -> Zeg(A, F) 

As happened with (1'), the derivation 

let U = /(F) in leq(X, U) ^ l [x/s (z)]let U = /(F) in leqS(Z, U) ^\ Y/0] 
let U = in leqS(Z,U) ~> l JeqS(Z,0) ~> l Jalse 

gets rid of redundant solutions. 

To which extent do our results guarantee the adequateness of the adaptation 
to let-narrowing of these strategies or others that could be defined? Certainly any 
strategy is sound for call-time choice semantics, because unrestricted ~-» is already 
sound (Theorem [14]) . This will be true also if the strategy uses derived rules in 
the sense of Section [5] With respect to completeness, we know that the space 
of let-narrowing derivations is complete wrt. let-rewriting (Theorem 15 1. But this 
does not imply the completeness of the strategy, which in general will determine 
a smaller narrowing space. Therefore completeness of the strategy must be proved 
independently. Such a proof may use semantic methods (i.e., prove completeness 
wrt. CRWL-semantics) or operational methods (i.e., prove completeness wrt. —y - 
derivations). We will not go deeper into the issue of strategies. 



7 Let-rewriting versus classical term rewriting 

In this section we examine the relationship between let-rewriting and ordinary term 
rewriting, with the focus put in the set of c-terms reachable by rewriting with each 
of these relations. As term rewriting is not able to handle expressions with let- 
bindings, during this section we assume that all considered programs do not have 
let-bindings in the right-hand side of its rules. 

We will first prove in Section |7.1| that let-rewriting is sound with respect to 
term rewriting, in the sense that any c-term that can be reached by a let-rewriting 
derivation from a given expression can also be reached by a term rewriting deriva- 
tion starting from the same expression. As we know, completeness does not hold 
in general because run-time choice computes more values than call-time choice for 
arbitrary programs. However, we will be able to prove completeness of let-rewriting 
wrt. term rewriting for the class of deterministic programs, a notion close to conflu- 
ence that will be defined in Section [73] Finally, we will conclude in Section [7T3| with 
a comparison between let-narrowing and narrowing, that will follow easily from the 
results in previous subsections and the adequacy of let-narrowing to let-rewriting. 

Thanks to the strong equivalence between CRWL and let-rewriting we can choose 
the most appropriate point of view for each of the two goals (soundness and com- 
pleteness): we will use let-rewriting for proving soundness, and CRWL for defining 
the property of determinism and proving that, under determinism, completeness of 
let-rewriting wrt. term rewriting also holds. 



7.1 Soundness of let-rewriting wrt. classical term rewriting 

In order to relate let-rewriting to term rewriting, we first need to find a way for 
term rewriting to cope with let-bindings, which are not supported by its syntax, 
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that is only able to handle expressions from Exp. Therefore, we define the following 
syntactic transformation from LExp into Exp that takes care of removing the let 
constructions, thus losing the sharing information they provide. 

Definition 9 [Let-binding elimination transformation) 

Given e G LExp we define its transformation into a let-free expression e € Exp as: 

X =def X 

h(ei, . . . , e„) =def h(e~i, . . . , e^) 
let X = ei in e 2 =def e^X/ei] 

Note that e = e for any e € Exp. 

We will need also the following auxiliary lemma showing the interaction between 
term rewriting derivations and substitution application. 

Lemma 12 {Copy lemma) 
For all e, ei, e 2 € -Exp, le V: 

i) ei — ► e 2 implies e[X/e{\ — ¥* e[X/e 2 }. 

ii) e\ ->•* e 2 implies e[X/e\\ ->* e[X/e 2 ]. 

Note how in ij, each of the different copies of ei introduced in e by the substitution 
has to be reduced to e 2 in a different term rewriting step in order to reach the 
expression e\Xjei\. 

Using this lemma we can get a first soundness result stating that the result of 
one let-rewriting step can also be obtained in zero or more steps of ordinary rewrit- 
ing, after erasing the sharing information by means of the let-binding elimination 
transformation. 

Lemma 13 {One-Step Soundness of let-rewriting wrt. term rewriting) 
For all e, e! € LExp we have that e -r e' implies e e 1 . 

The remaining soundness results follow easily from this lemma. The first one 
shows how we can mimic let-rewriting with term rewriting through the let-binding 
elimination transformation. But then, as e = e for any e € Exp, we conclude that 
for let-free expressions let-rewriting is a subrelation of term rewriting. 

Theorem 17 {Soundness of let-rewriting wrt. term rewriting) 

For any e, e' € LExp we have that e — r e' implies e — >* e'. As a consequence, if 
e, e' € Exp then e -> r e' implies e — >* e', i.e., (— > l n (Exp x Exp)) C — >*. 



The first part follows from an immediate induction on the length of the let-derivation, 



using Lemma 13 for the inductive step. The rest is obvious taking into account that 



e = e and e' = e' when e, e' € Exp. □ 

To conclude this part, we can combine this last result with the equivalence of 
CRWL and let-rewriting, thus getting the following soundness result for CRWL 
with respect to term rewriting. 
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Theorem 18 (Soundness of CRWL wrt. term rewriting) 

For any e G Exp, t G CTerm±, if e — > t then there exists e' G Exp such that 
e ->* e' and t C |e'|. 



11 



17 



Proof 

Assume e —> t. By Theorem 
t E | e "|. Then, by Theorem"" 
we can choose e' = e" G E'zp so we get e 
and then we have t C \e"\ = |e"| = le'l. 



there exists e" G LExp such that e — r e" and 
we have e — e". As e € we have e = e and 
->•* e'. It is easy to check that \e"\ = \e"\ 
□ 



7.2 Completeness of CRWL wrt. classical term rewriting 

We prove here the completeness of the CRWL framework wrt. term rewriting for 
the class of CRWL-deterministic programs, which are defined as follows. 

Definition 10 (CRWL-deterministic program) 

A program V is CRWL-deterministic iff for any expression e € Exp± its denotation 
lej v is a directed set. In other words, iff for all e G Exp± and t\,t2 G \e\ v , there 
exists *3 G [e] 73 with fi C t 3 and t 2 E 

Thanks to the equivalence of CRWL and let-rewriting, it is easy to characterize 
CRWL-determinism also in terms of let-rewriting derivations. 

Lemma 14 

A program V is CRWL-deterministic iff for any e G Exp, e',e" G LExp with 
P h e ->'* e' and V h e ^ r e" there exists e'" G LE'xp such that P h e 4 1 ' e'" 
and |e"'| □ |e'|,|e"'| □ |e"|. 



and 



For the left to right implication, assume a CRWL-deterministic program V and 
e G E'xp, e',e" G LExp with e — > r 
we have |e'|, |e"| G 
t 



10 



By part Hi) of Theorem 
e] and then by Definition 10 there exists t G [e] such that 



|e |, \e | C i. Now, by part izi) of Theorem 11 there exists e G LExp such that 
e ^ r e'" and i C |e"'|, so we have |e'|, |e"| C i C |e"'| as expected. 

Regarding the converse implication, assume e G Exp with ti,t2 G [e]. By part 
Hi) of Theorem 11 there exist e',e" G LExp such that e — > l e', e — y e" and 
^2 E |e"|. Then by hypothesis there exists e"' G LExp such that e — e'" 
e"| C |e"'|. Now, by part Hi) of Theorem 10 we have \e"'\ G [e] and this 
is the ta of Definition 10 we are looking for, i.e., t^ G [e] and t\,t2 E ^3- □ 



ti E |e' 
and |e' 

k 



CRWL-determinism is intuitively close to confluence of term rewriting, but these 
two properties are not equivalent, as shown by the following example of a CRWL- 
deterministic but not confluent program. 
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Example 7 

Consider the program V given by the rules 

/ — > a f — > loop loop — > loop 

where a is a constructor. It is clear that — >p is not confluent (/ can be reduced 
to a and loop, which cannot be joined into a common reduct), but it is CRWL- 
deterministic, since \f\ v = {_L,a}, [/oop] 73 = {!_} and la] v = {_L,a}, which are 
all directed sets. 

We conjecture that the reverse implication is true, i.e., that confluence of term 
rewriting implies CRWL-determinism. Nevertheless, a precise proof for this fact 
seems surprisingly complicated and we have not yet completed it. 

A key ingredient in our completeness proof is the notion of CRWL-denotation of 
a substitution, which is the set of c-substitutions whose range can be obtained by 
CRWL-reduction over the range of the starting expression. 

Definition 11 (CRWL-denotation for a substitution) 

Given a program V, the CRWL-denotation of a a £ Subst± is defined as: 

Mcrwl = {OeCSubst ± | VX £ V, V hcRWL o-(X) 6{X)} 

We will usually omit the subscript CRWL and/or the superscript V when implied 
by the context. 

Any substitution 9 in the denotation of some substitution a contains less infor- 
mation than a, because it only holds in its range a finite part of the possibly infinite 
denotation of the expressions in the range of a. We formalize this property in the 
following result. 

Proposition 10 

For all a € Subst±, <G [a], we have that 9 < cr. 

Besides, we will use the notion of deterministic substitution, which is a substitu- 
tion with only deterministic expressions in its range. 

Definition 12 (Deterministic substitution) 

The set DSubst± of deterministic substitutions for a given program V is defined as 

DSubst± = {a e Subst± \ \/X e dom(a).\a(X)\ is a directed set} 

Then CSubstj_ C DSubstj^ , and under any program Vtr £ Subst^ . [<r] C CSubst± C 
DSubst±. Note that the determinism of substitutions depends on the program, 
which gives meaning to the functions in its range. Obviously if a program is deter- 
ministic then Subst± = DSubst±. 

A good thing about deterministic substitutions is that their denotation is always 
a directed set. 
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Proposition 11 

For all a £ DSusbt±, [cr] is a directed set. 

But the fundamental property of deterministic substitutions is that, for any 
CRWL-statement starting from an instance of an expression that has been con- 
structed using a deterministic substitution, there is another CRWL-statement to 
the same value from another instance of the same expression that now has been 
built using a c-substitution taken from the denotation of the starting substitution. 
This property is a direct consequence of Proposition 

Lemma 15 

For all a £ DSusbt±, e £ Exp±,t £ CTerm±, 

if ea — > t then 39 £ [cr] such that e9 — > t 



Proof (sketch) 

We proceed by a case distinction over e. If e = X £ dom(a) then we have ea = 
a(X) —> t, and we can define 

( t ifY = X 
6(Y) = < _L if Y £ dom{a) \ {X} 
[ Y otherwise 

Then it is easy to check that 9 £ [cr] and besides e6 = 9{X) = i — > i by Lemma [5] 
so we are done. If e = X £ V\dom(a) then we have ea = a(X) = X — > t, and given 
Y = dom(a) it is easy to check that [Y/ _L] £ [cr], and besides e[Y/ _L] = X — > t by 
hypothesis. 

Finally if e ^ V we proceed by induction on the structure of the proof for ea —> t. 
The interesting cases are those for (DC) and (OR) where we use that a £ DSusbt±, 
so by Proposition [TT] its denotation is directed. Then there must exist some 9 £ 
\a\ which is greater than each of the 9i obtained by induction hypothesis over 
the premises of the starting CRWL-proof for ea — > t. Using the monotonicity of 
Proposition [5] we can prove e9 — > t, which also holds for CRWL, by Theorem [4] (see 



Appendix A page 88 for details). □ 



Now we are finally ready to prove our first completeness result of CRWL wrt. 
term rewriting, for deterministic programs. 

Lemma 16 {Completeness lemma for CRWL wrt. term rewriting) 
Let V be a CRWL-deterministic program, and e, e' £ Exp. Then: 

e ->* e' implies [e'] C [e] 

Proof 

We can just prove this result for e — > e', then its extension for an arbitrary number 
of term rewriting steps holds by a simple induction on the length of the term 
rewriting derivation, using transitivity of C. 

Assume e — > e', then the step must be of the shape e = C[f(p)a] — > C[ra] = e' for 
some program rule {f(p) — > r) £ V, a £ Subst. First, let us focus on the case for 
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C = [ ], and then assume some t £ CTerm ^ such that V \~crwl e' = ra —> t. As V 



is deterministic then a £ DSubst±, therefore by Lemma 15 there must exist some 
9 £ [cr] such that V h crwl r6 — > t. But then we can use 9 to build the following 
CRWL-proof. 

. . . pjO ->pi6 ... rO ->t 

me - 1 

where for each pi £ p we have V \~crwl Pi9 pfi by Lemma [5] as pi £ CTerm 
because V is a constructor system, and so pi9 £ CTerm j_, as 9 £ [cr] C CSubst±. 
But we also have 9 < a by Proposition [TOJ therefore by applying the monotonicity 
for substitutions from Proposition [5] — which also holds for CRWL, by Theorem 
@- we get V hcRWL e = /(p)(T -> t. Hence [e'] = [raj C |/(p)a] = [e]. 

Finally, we can generalize this result to arbitrary contexts by using the compo- 
sitionality of CRWL from Theorem [l] Given a term rewriting step e = C[f(p)a] — > 
C[ra] = e' then by the proof for C — [ ] we get fra] C [/(p)cr], but then 

[e'] = [CHI 

= U PM] by Theorem [T] 

C U [CM] as M C [fffia] 
= [C[f(p)a]] = [e] byTheorem[T] 

□ 

The previous lemma, together with the equivalence of CRWL and let-rewriting 
given by Theorem [12] and Theorem |4j allows us to obtain a strong relationships be- 
tween term rewriting, let-rewriting and CRWL, for the class of CRWL-deterministic 
programs. 

Theorem 19 

Let V be a CRWL-deterministic program, and e,e' £ Exp,t £ CTerm. Then: 

a) e — >* e' implies e — ¥ l " e" for some e" £ LExp with |e"| □ |e'|. 

b) e ^* i iff e t iff P \- C rwl e->t. 

Notice that in part a) we cannot ensure e — >* e' implies e — > l e' , because term 
rewriting can reach some intermediate expressions not reachable by let-rewriting. 
For instance, given the deterministic program with the rules g —> a and f(x) — > 
c(x, x), we have /(<?) — >* c(g, a), but f(g) ^ l c(g, a). Still, parts a) is a strong com- 
pleteness results for let-rewriting wrt. term rewriting for deterministic programs, 
since it says that the outer constructed part obtained in a rewriting derivation can 
be also obtained or even refined in a let-rewriting derivation. Combined with The- 
orem 17 part a) expresses a kind of equivalence between let-rewriting and term 
rewriting, valid for general derivations, even non-terminating ones. For derivations 
reaching a constructor term (not further reducible), part b) gives an even stronger 
equivalence result. 
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7.3 Let-narrowing versus narrowing for deterministic systems 

Joining the results of the previous section with the adequacy of let-narrowing to 
let-rewriting, we can easily establish some relationships between let-narrowing and 
ordinary term rewriting/narrowing, summarized in the following result. 

Theorem 20 

For any program V , e £ Exp, G CSubst and t S CTerm: 

a) If e t then e9 t. 

b) If in addition V is CRWL-deterministic, then: 

bi) If e6 -»* t then 3t' E CTerm, a, 6' G CSubst such that e t' , t'& = t 

and a9' = 9[var(e)]. 
b2) If e t, the same conclusion of (b\) holds. 

Part a) expresses soundness of —» wrt. term rewriting, and part b) is a com- 
pleteness result for wrt. term rewriting/narrowing, for the class of deterministic 
programs. 

Proof 

Part a) follows from soundness of let-narrowing wrt. let-rewriting (Theorem 14) 



and soundness of let-rewriting wrt. term rewriting of Theorem 19 



For part b\), for let-narrowing, assume eO — >* t. By the completeness of let- 



rewriting wrt. term rewriting for deterministic programs (Theorem 19), we have 



eO — > t, and then by the completeness of let-narrowing wrt. let-rewriting (Theorem 



15), there exists a narrowing derivation e t' with t'9' = t and ad' = 6[FV(e)). 
But notice that for e € Exp, the sets FV(e) and var(e) coincide, and the proof is 
finished. 

Finally, 62) follows simply from soundness of (ordinary) narrowing wrt. term 
rewriting and 61). □ 



8 Conclusions 

This paper contains a thorough presentation of the theory of first order let-rewriting 
and let-narrowing for constructor-based term rewriting systems. These two relations 
are simple notions of one-step reduction that express sharing as it is required by 
the call-time choice semantics of non-determinism adopted in the functional logic 
programming paradigm. In a broad sense, let-rewriting and let-narrowing can be 
seen as particular syntactical presentations of term graph rewriting and narrowing. 
However, keeping our formalisms very close to the syntax and basic notions of 
term rewriting systems (terms, substitutions, syntactic unification,. . . ) has been an 
essential aid in establishing strong equivalence results with respect to the CRWL- 
framework — a well-established realization of call-time choice semantics — , which 
was one of the main aims of the paper. 

Along the way of proving such equivalence we have developed powerful seman- 
tic tools that are interesting in themselves. Most remarkably, the CRWL ie t-logic, a 
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conservative extension of CRWL that deals with let-bindings, and the notion of hy- 
persemantics of expressions and contexts, for which we prove deep compositionality 
results not easily achievable by thinking directly in terms of reduction sequences. 

We have shown in several places the methodological power of having provably 
equivalent reduction-based and logic-based semantics. In some occasions, we have 
used the properties of the CRWL-semantics to investigate interesting aspects of 
reductions, as replaceability conditions or derived operational rules, like bubbling. 
In others, we have followed the converse way. For instance, by transforming let- 
rewriting reductions into ordinary term rewriting reductions, we easily concluded 
that let-rewriting (call-time choice) provides less computed values than term rewrit- 
ing (run-time choice). By using again semantic methods, we proved the opposite 
inclusion for deterministic programs, obtaining for such programs an equivalence 
result of let-rewriting and term rewriting. 

In our opinion, the different pieces of this work can be used separately for dif- 
ferent purposes. The CRWL/ et -logic provides a denotational semantics reflecting 
call-time choice for programs making use of local bindings. The let-rewriting and 
let-narrowing relations provide clear and abstract descriptions of how computations 
respecting call-time choice can proceed. They can be useful to explain basic opera- 
tional aspects of functional logic languages to students or novice programmers, for 
instance. They have been used also as underlying formalisms to investigate other 
aspects of functional logic programming that need a clear notion of reduction; for 
instance, when proving essential properties of type systems, like subject reduction or 
progress. In addition, all the pieces are interconnected by strong theoretical results, 
which may be useful depending on the pursued goal. 

Just like classical term rewriting and narrowing, the let-rewriting and narrowing 
relations define too broad computation spaces as to be adopted directly as con- 
crete operational procedures of a programming language. To that purpose, they 
should be accompanied by a strategy that selects only certain computations. In 
this paper we have only given an example-driven discussion of strategies. We are 
quite confident that some known on-demand evaluation strategics, like lazy, needed 



or natural rewriting/narrowing, can be adapted to our formal setting. In (Riesco 



and Rodn'guez-Hortala 2010 Sanchez-Hernandez 2011 ) we work out in more detail 



two concrete on-demand strategies for slight variants of let-rewriting and narrowing 
formalisms. 

A subject of future work that might be of interest to the functional logic commu- 
nity is that of completing the comparison of different formalisms proposed in the 
field to capture call-time choice semantics: CRWL, admissible term graph rewrit- 
ing/narrowing, natural semantics a la Launchbury, and let-rewriting/narrowing. 
Proving their equivalence would greatly enrich the set of tools available to the 
functional logic programming theoretician, since any known or future result ob- 
tained for one of the approaches could be applied to the rest on a sound technical 
basis. 
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Appendix A Detailed proofs for the results 

In the proofs we will use the usual notation for positions, subexpressions and 
repacements from (Baader and Nipkow 1998). The set of positions of an expression 
e € Exp is a set 0(e) of strings of positive integers defined as: 

• If e = X G V, then O(e) — e, where e is the empty string. 

• If e = h(ei, . . . , e„) with h G £, then 

n 

0(e) = {e}u[J{ip\peO(e i )} 
i=i 

The subexpression of e at position p £ O(e), denoted e| p , is defined as: 

e| e = e 
h\S\i . . . , e n ) \ ip 6j \ p 

For a position p 6 O(e), we define the replacement of the subexpression of e at 
position p by e! — denoted e[e'] p — as follows: 

e[e% = e' 
h(e\,...,e n )[e'] ip = ft(ei, . . . , ej[e'] p , . . . , e„) 

When performing proofs by induction we will usually use IH to refer to the 
induction hypothesis of the current induction. We will use an asterisk to denote the 
use of a let-rewriting rule one or more times, as in (Flat*). We will also use the 
following auxiliary results. 



A . 1 Lemmas 

The following lemmas are used in the proofs for the results in the article. Most of 
them are straightforwardly proved by induction, so we only detail the proof in the 
interesting cases. 
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Lemma 17 

Vt G CTerm±. \t\ = t. 
Lemma 18 

Vf G CTermx. V \~cKWLut t -> t. 
Lemma 19 

Given 9, 6' G LSubstx, e G L-Krpx, if 6> C 6>' then e6> C e0'. 
Lemma 20 

Given 6> G LSubst±, e, e' G LExpj_, if e C e' then e6> C e'0. 
Lemma 21 

For every e,e' G LExp ± , C G Cntai, if |e| C |e'| then |C[e]| C \C[e']\. 
Proof 

We proceed by induction on the structure of C. The base case is straightforward 
because of the hypothesis. For the Inductive Step we have: 

• C = h(...,C',.. .)• Directly by IH. 

• C = let X = C in ex, so C[e] = let X = C'[e] in e\. Then: 

\C[e}\ = \let X = C'[e] in e x | = | ei |LY/|C'[e]|] 

Q mM \ei\[X/\C'[ef]\] = \let X = C'[e'] in ei | = \C[e']\ 

(*) By IH we have \C'[e]\ C |C'[e']|, therefore [X/|C'[e]|] C [X/|C'[e']|]. Finally, by 



Lemma 19 |ei|[X/|C'[e]|] C |e x | [e 7 ] 



• C = /ef X = ei in C. Similar to the previous case but using Lemma 20 to obtain 
\C'[e]\ [X/\ ei \] C |C'[e']|[X/| ei |] from the IH \C'[e}\ C \C'[e']\. 

□ 

Lemma 22 

If |e| = |e'| then |C[e]| = |C[e']| 
Proof 

Since C is a partial order, we know by refiexivity that |e| C |e'| and |e'| C |e|. Then 



by Lemma 21 we have |C[e]| C |C[e']| and \C[e']\ C. \C[e]\. Finally, by antisymmetry 



of the partial order C we have that |C[e]| = |C[e']|. □ 
Lemma 23 

For all ex,e 2 G LEx P ,X G V, |ei[X/e 2 ]| = |ei|[X/|e 2 |] 
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Proof 

By induction on the structure of e±. The most interesting case is when e\ = letY — 
si in s 2 . By the variable convention Y ^ dom([X/e 2 ]) and Y ^ vran([X/e 2 ]), so: 

\e x [X/e 2 ]\ = \letY = Sl [X/e 2 ] in s 2 [X/e 2 }\ 

^\ S2 [X/e 2 }\[Y/\ Sl [X/e 2 }\] 

=m\s 2 \[X/\e 2 \}[Y/(\ Sl \[X/\e 2 \])} 

= | 8a |[y/| Sl |][Jf/|e 2 |] (*) 

= \let Y= Sl in s 2 \[X/\e 2 \] = |ei|[X/|e 2 |] 

(*) Using Lemma[l]with the matching [e/\s 2 \,6/[X/\e 2 \],X/Y,e' /[s^]. □ 
Lemma 24 

Given 8 e LSubst±, e, e' € LExp±_, if e C e' then ed C e'6. 
Lemma 25 

For every a G LSubst±, C £ Cntxt and e G LExp± such that {dom{a) L)vran(a)) PI 
W(C) = we have that (C[e])er = C<r[ecr]. 

Proof 

By induction on the structure of C The most interesting cases are those concerning 
let-expressions: 

• C = let X = C in e\\ therefore C[e] = let X — C'[e] in e\. Then 

(C[e])cr = let X — (C'[e])(T in e\o = *h let X = C o\eo\ in e\o~ 
= {let X = (C'[])cr in e x a)[eo-] =(**) {{let X = C'[] in e x )a)[eo-] = Ca[ea] 

(*): by definition BV{let X = C in e) = BV{C), so {dom{cr)Uvran{a))nBV{C) = 
= (cfom(o-) U vran{a)) n BV(C'). 

(**): we can apply the last step because by hypothesis we can assure that we do 
not need any renaming to apply {let X = C[] in e x )a. 

• C = let X = e 1 inC: therefore C[e] = let X = e x in C'[e\. Then 

{C[e])o~ = let X = e x a in (C'[e])o~ =ih let X — e x a in C'o~[eo~] 
= {let X = e x a in {C'[])a)[ea} =M {{let X = e x in C'[})(7)[ea} = Ca[ea\ 

(*): we can apply the last step because by hypothesis we can assure that we do not 
need any renaming to apply (let X = e x in C'\\)o~. 

□ 

Lemma 26 

For any e G Exp±, t G CTerm± and program V, if V h e — > < then there is a 
derivation for V h e — > i in which every free variable used belongs to .FV(e — > i). 



A simple extension of the proof in (Dios-Castro and Lopez-Fraguas 2007). □ 



Theory and Practice of Logic Programming 



■53 



Lemma 27 

For every CRWLi et derivation e — > t there exists e' £ LExp± which is syntactically 
equivalent to e module a-conversion, and a CRWLi et derivation for e' — > t such 
that if B is the set of bound variables used in e' — > t and £ is the set of free variables 
used in the instantiation of extra variables in e' — > t then B n (£ U var(t)) = 0. 



Proof 

By Lemma 26 if J 7 is the set of free variables used in e' — > t, then J 7 C FV(e' — > t), 
in fact J 7 = FV(e' —> t), as i*V(e') and FV(t) are used in the top derivation of the 
derivation tree for e' — > t. As by definition £ U var(t) C J 7 , if we prove £? n J 7 = 
then Z?n {£ U var(t)) = is a trivial consequence. To prove that we will prove that 
for every a £ LExp± used in the derivation for e' — > t we have BV(a) PiFV(a) = 0. 
We can build e' using a-conversion to ensure that BV(e')r\FV(e r ) — 0. This can be 
easily maintained as an invariant during the derivation, as the new let-bindings that 
appear during the derivation are those introduced in the instances of the rule used 
during the OR steps, and be can ensure by a-conversion that BV(a) n FV(a) = 
for these instances too, as a-conversion leaves the hypersemantics untouched. □ 



A. 2 Proofs for Section pO| 

Theorem^ (Compositionality of CRWL) 
For any C € C'ntxt, e, e' € Exp± 

[C[e]] = (J {C[t]j 

*6[e] 

As a consequence: [e] = [e'] VC £ Cntxt.[C[e}] = {C[e']\ 
Proof 

We prove that C[e] — > t 4^ 3s £ CTerm^ such that e — > s and C[s] —> t. 



=>) Induction on the size of the proof for C[e] -> t. 

Base case The base case only allows the proofs C[e] — > _L using (B), C[e] = X — > 
X using (RR) and C[e] = c —o c with c £ CS using (DC), that are clear. When 



C = [ ] the proof is trivial with s — t and using Lemma 18 
Inductive step Direct application of the IH. 



<=) By induction on the size of the proof for C[s] — > t 

Base case The base case only allows the proofs C[s] — > _L, C[s] = X — > X and 
C[s] = c — o c with c £ CS, that are clear. When C = [ ] we have that 3s £ CTerm± 
such that e — > s and s — > Since s — > t by Lemma [5] we have {Cs, and using 
Proposition [3] e — > t — as e C e because C is a partial order. 

Inductive step Direct application of the IH. 
□ 
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A. 3 Proofs for Section^ 

Theorem^ 

Let V be a CRWL-program, e G Exp± and i G CTerm±. Then: 

l~Cflwx e->t iff e i 

It is easy to see that ^* coincides with the relation defined by the 5i?C-proof 



calculus of ( Gonzalez- Moreno et al. 1999), that is, V \~brC e — > e! <-> e 



But in that paper it is proved that Bi?C-dcrivability and CRWL-dcrivability (called 
there GOi?C-derivability) are equivalent. □ 

A. 4 Proofs for Section^ 

Lemma^ (Substitution lemma for let-expressions) 

Let e, e' £ LExp±, 9 £ Subst± and XeV such that X $ dom(9) U vran(9). Then: 

(e[X/e'])d = e9[X/e'e] 

Proof 

By induction over the structure of e. The most interesting cases are the base cases: 

• e = X: Then (e[X/e'})6 = (X[X/e'])0 = e'6 = X[X/e'6] 

=x?dom(e) X9[X/e'6] = e9[X/e'9] 

• e = Y be X: Then (e[X/e't])6 = {Y[X/e'])6 = Y9 

=Xtran(6) Y9[X/e'9] ee e9[X/e'9] 

□ 



A . 5 Proofs for Section 

Lemma^ (Closedness under CSubst of let-rewriting) 

For any e, e' £ LExp, 9 £ CSubst we have that e— > z ™e' implies e# — "e'0. 
Proof 

We prove that e — >' e' implies e# — >' e'9 by a case distinction over the rule of the 
let-rewriting calculus applied: 

(Fapp) Assume /(ti, . . . ,t n ) —> l r, using (f(px, ■ ■ ■ ,p n ) -^e)eP and a £ CSubst 
such that \fi.piO~ = U and ea = r. But since o9 G CSubst and *ii.piO~9 = ti9 then 
we can perform a (Fapp) step /(ii, . . . , t n )0 = f(tiO, . . . , t n 0) — > l ea9 = r9. 

(Letln) Easily since X g" dom(9) because X is fresh. 

(Bind) Assume let X — t in e— e[X/t] and some 9 £ CSubst. Then t £ CTerm 
by the conditions of (Bind), hence t9 £ CTerm too and we can perform a (Bind) 
step {let X = t in e)9 = let X = t9 in e9 e9[X/t9]. Besides X (dom(9) U 
vran{9)) by the variable convention, and so e9[X/t9] = e[X/t}9 by Lemma[Tj so 
are done. 
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(Elim) Easily as X g" FV(e20) because X £ vran{9) by the variable convention. 
(Flat) Similar to the previous case since Y £ FV(ez9). 

(Contx) Assume C[e] — > l C[e'} because e— r e' by one of the previous rules, and 
some 9 G CSubst. Then we have already proved that e9 — > l e'9. Besides by the 
variable convention we have BV(C) fl (dom(9) U vran(9)) = 0, hence by Lemma 
(C[e])6* = C9[e9}. Furthermore, if e— e' was a (Fapp) step using a G CSubst 



25 



to build the instance of the program rule (f(p)<J — > ra), then vran(a\\ var (jj)) H 
BV(C) = by the conditions of (Contx), and therefore vran((a9)\\ var (p)) D 
BV(C) = 0. But as o9 is the substitution used in the (Fapp) step e9^t l e'9, 
then C9[e9] — > l C9[e'9] by (Contx). On the other hand, if e— > l e' was not a (Fapp) 



step then C9[e9] — > C9[e'9] too, and hnally we can apply Lemma 25 again to get 
C9[e'9] = (C[e'})9. 

The proof for e — > l e' proceeds straightforwardly by induction on the length n 
of the derivation. □ 

Proposition^ (Termination of —} ln f J 

Under any program we have that — > ln f is terminating. 

Proof 

We define for any e € LExp the size (fci, ^2,^3), where 

k\ = number of subexpressions in e to which (Letln) is applicable. 
&2 = number of lets in e. 

A;3 = sum of the levels of nesting of all let-subexpressions in e. 

Sizes are lexicographically ordered. We prove now that application of (Letln), 
(Bind), (Elim), (Flat) in any context (hence, also the application of (Contxt)) 
decreases the size, what proves termination of — > ln f . The effect of each rule in the 
size is summarized as follows (in each case, we stop at the decreasing component): 

(Letln): (<,_,_) 
(Bind): (=,<,_) 
(Elim): (<,<,_) 
(Flat): (=,=,<) 

□ 

Lemma^ (Peeling lemma) 

For any e, e' G LExp if e \. ln f e' — i.e, e' is a — y n * normal form for e — then e' 
has the shape e' = let X — f(t) in e" such that e" G V or e" = h(t') with h G S, 
7 C FS and t, V C CTerm. 
Moreover if e = h(ei, . . . , e„) with h G S, then 



e = h(e%, . . . , e„) ^. in ' f * /et X = f(t) in h(t 1: . . . ,t n ) = e' 
under the conditions above, and verifying also that ti = whenever G CTerm. 
Proof 

We prove it by contraposition: if an expression e does not have that shape, e is not 
a — > ln f normal form. We define the set of expressions which are not cterms as: 
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nt ::= c(. . . , nt, . . .) 

I /(e) 

| let X = e\ in ei 

We also define the set of expressions which do not have the presented shape 
recursively as: 

ne ::= h(. . . , nt, . . .) 

| let X = /(f) in ne 

| let X — /(. . . , nt, . . .) in e 

| let X = c(e) in e 

| Zef X = (let Y = e' in e") in e 
We prove by induction on the structure of an expression ne that it is always 
possible to perform a — > ln f step: 
Base case: 

ne = h(. . . , nt, . . .): there are various cases depending on nt: 

— at some depth the non-cterm will contain a subexpression c'(. . . , nt' , . . .) 
where nt' is a function application /(e) or a let-rooted expression let X = 
e\ in e2- Therefore we can apply the rule (Contx) with (Lctln) in that posi- 
tion. 

— /(e): we can apply the rule (Letln) and perform the step 

h{. . . , /(e), . . .) ^ let X = /(e) in h(. . . , X, . . .) 

— let X — e\ in ei\ the same as the previous case. 

let X = /(. . . , nt, . . .) in e: we can perform a (Contx) with (Lctln) step in /(. . . , nt, . . 
as in the previous h(. . . , nt, . . .) case. 

let X — c(e) in e: if e are cterms t, then c(t) is a cterm and we can perform a 
(Bind) step let X = c(t) in e — > ln f e[X/c(t)]. If e contains any expression ne then 
we can perform a (Contx) with (Letln) step as in the previous h(. . . , nt, . . .) case. 
let X = (let Y = e' in e") in e: by the variable convention we can assume that 
Y ^ FV(e), so we can perform a (Flat) step let X = (let Y = e' in e") in e -^ lni 
let Y — e' in let X = e" in e. 

Inductive step: 

let X — f(t) in ne: by IH we have that ne — > ln f ne' , so by the rule (Contx) we can 
perform a step let X = f(t) in ne —> ln f let X = /(t) in ne'. 

Notice that if the original expression has the shape h(e\, . . . , e„) the arguments 
ei which are cterms remain unchanged in the same position. The reason is that no 
rule can affect them: the only rule applicable at the top is (Letln), and it can not 
place them in a let binding outside h(. . .); besides cterms do not match with the 
left-hand side of any rule, so they can not be rewritten by any rule. □ 

Lemma [^] ( Growing of shells ) 

Under any program V and for any e, e' € LExp 

i) e — y e' implies |e| C |e'| 

ii) e -> ln f e' implies |e| = |e'| 
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Proof for Lemma^4\ 

We prove the lemma for one step (e— > l e! and e — Y n ' e') by a case distinction over 
the rule of the let-rewriting calculus applied: 

(Fapp) The step is f(h,...,t n )->- l r, and |/(fi, . . . ,f„)| =±E \r\- 

(Letln) The equality \h(e\, . . . , e, . . . , e„)| = \let X = e in h(e\, . . . , X, . . . , e„)| 

follows easily by a case distinction on h. 
(Bind) The step is let X = t in e-> l e[X/t], so {let X = t in e\ = |e|[X/|t|] = 



\e[X/t] \ by Lemma 23 



(Elim) The step is let X = e x in e 2 ^ l e 2 with X <£ FV(e 2 ). Then \let X 
1 1 in e 2 \ — |e2|[X/|ei|] = \e 2 \. Since the variables in the shell of an expression 
is a subset of the variables in the original expression, we can conclude that if 
X £ FV(e 2 ) then X <£ FV(\e 2 \). 

(Flat) The step is let X = (let Y = e\ in e 2 ) in e 3 —> l let Y = e x in (let X — 
e 2 in e 3 ) with Y ^ FV(e 3 ). By the variable convention we can assume that 
X $ FV(let Y = ex in e 2 ) —in particular X £ FV(ex). Then: 

\let Y — e\ in (let X — e 2 in e 3 )| 
= \let X = e 2 in e 3 |[F/|ei|] 
= (|e 3 |[X/|e 2 |])[y/|e 1 |] 

Notice that X £ dom([Y/\ei\]) and X vran([Y/\ei\}) = FV(\ei\) because 
X £ FV(ei) and i*V(|ei|) C FV(e{). Therefore we can use Lemma[I] 

(|e 3 |[X/| e2 |])[F/| ei |] 

= (|e 3 |[y/| ei |])[X/(| e2 |[r/| ei |])] By Lemma[T] 

= |e 3 |[X/(|e 2 |[y/| ei |])] Y £ FV(e 3 ), soY<£ FV(\e 3 \) 

= \e 3 \[X/\let Y = e x in e 2 |] 

= \let X = (let Y = e\ in e 2 ) in e 3 | 

(Contx) The step is C[e] C[e'} with e -V e' using any of the previous rules. Then 



we have |e| C |e'|, and by Lemma [2_l] C [e] C C[e'}. If the step is C[e] C[e'] 
then rule (Fapp) has not been used in the reduction e — >' e' and by the previous 
rules we have \e\ = \e'\. In that case by Lemma 22 we have C[e] — C[e']. 

The extension of this result to — > l and —> ln f is a trivial induction over the number 
of steps of the derivation. □ 



A. 6 Proofs for Section 1^.2 



Theorem^ (CRWL vs. CRWL let ) 

For any program V without lets, and any e £ Exp±: 



l e fcRWL — I e l "cRWL u 



Proof 

As any calculus rule from CRWL is also a rule from CRWL iet , then any CRWL-proof 
is also a CRWL iet -proof, therefore [e]c.Rwx Q le}cRWL, e f For the other inclusion, 
assume no let-binding is present in the program and let e £ Exp. Then, for any 
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t € CTermx , as the rules of CRWL/ et do not introduce any let-binding and the rule 
(Let) is only used for let-rooted expressions, the CRWL; et -proof V \~cRWL, ct e — > t 
will be also a CRWL-proof for V ^ C RWL lrt e->t, hence [e]cRWX !e! Q [ejcRWL too. 
□ 

The following Lemma is used to prove point in) of Lemma [5] Notice that this 
Lemma uses the notions of hyperdenotation (||) and hyperinclusion (<<=) presented 
in the final part of Section |4~2| 



Lemma 28 

Under any program V and for any e £ LExp± we have that |e| € A0.(|e0|t)4,. 
Proof 

We will use the following equivalent characterization of (ef)4-: 

(ef)i= {e\ £ LExp± | 3e 2 € LExp±. e C e 2 A ei C e 2 } 

note that {e 2 € LExp± \ e C e2} is precisely the set ef - Besides note that: 

[e] € A0.(|e0|tH 

V0 e CSubst ± . [e0] C (|e6»|tH 
<=> V0 G CSubst±,t e CTerm ± . e9 -» t 
=> t e (\e0\t)i 
V0 e CSubst ± ,t e CTerm_ L . e9 -» * 
=> 3f e CTerm ± . \e6\ \—t'f\t\—t' 

where t' € CTermx is implied by |e0| C t'. To prove this last formulation first 
consider the case when t =_L Then we are done with t' = |e0| because then |e0| C 
\e6\ =t' andiEE_LC |e0| = t' . 

For the other case we proceed by induction on the structure of e. Regarding the 
base cases: 

If e ee_L then t =_L and we are in the previous case. 

If e = X e V then eO = 9{X) -> t, and as 9 € CSubst^ then 0(X) € CTerm ± 
which implies i C 0(-^) by Lemma [5] But then we can take i' = 9(X) for which 



i C 0(X) = i' and \e9\ = \9(X)\ = 6(X) —by Lemma [17] since 0(X) € CTerm ± - 
and 0pf) C 0(X) ee t'. 

If e ee c G DC then either t =_L and we are in the previous case, or t = c. But then 
we can take t' = c for which \ed\ = c C c = t 1 , and t ee c C c ee 
If e e / e f S then |e0| ee |/| ee_L, and so |e0| f= CTerm x and (|e0| f) |= 
CTerm± 3 [e0], so we are done. 

Concerning the inductive steps: 

If e ee f(ei, . . . , e„) for / g FS" then |e0| ee_L and we proceed like in the case for 
e=f. 

If e ee c(ei, . . . , e„) for c € Z?C then either i ee_L and we are in the previous case, 
or £ ee c(ii, . . . ,t n ) such that Vi. e^0 — > ij. But then by IH we get Vi. 3^. |ej0| C 
t'i Ati C so we can take £' ee c(£' 1; . .. ,t' n ) for which |e0| ee c(|ei0|, . . . , |e„0|) C 
c(ti, .. . ,4) = f and i ee c(t x , . ..,t n ) E c(*i, ...,<) = 
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• If e = let X = ei in e2 then either t =_L and we are in the previous case, or we 
have the following proof: 

e x 9 -> t x e 2 0[X/ti] -> t 
e8 = let X = e±9 in e 2 9 —> t 

Then by IH over e x we get that 3t' v \e\Q\ C t[ A h C ii. Hence [X/ti] C so 
by Proposition [5] we have that e29[X/ti] —> t implies e2#[.X'/f' 1 ] — > t. But then we 
can apply the IH over e 2 with 9[X/i/ 1 ) to get some t' G CTerm± such that t C i' 
and |e20[X/f' 1 ]| C i', which implies: 



= |e 2 (9|[X/|t' 1 |] by Lemma[23] 



= |e 2 6>|[X/i' 1 ] by Lemma[l7jas ^ G CTerm± 

□ |e 2 0|[X/|ei0|] as|ei0|Cti 
= |Zet X = ei6> in e 2 9\ = \e9\ 



□ 



Lemma [2| 

For any program e G LExp±, t,t' G CTerm±: 

1. iff i' C <■ 

2. |e| G [e]. 

3- [e] C (|e|t)i, where for a given i? C LExp± its upward closure is Rf= {e' G 
LExp±\ 3e £ £. e C e'}, its downward closure is i?|= {e' G LExp±\ 3e G 
E. e' E e}, and those operators are overloaded for let-expressions as ef — {e}*f 
and e\.= {e}J,. 



Proof 

1. Easily by induction on the structure of i. 

2. Straightforward by induction on the structure of e. In the case of let expressions, 
the proof uses |e| G CTerm± and Proposition [4] in order to apply the CRWL; et rule 
(Let). 

3. By Lemma [28] we have that |e| € A0.(|e0|t)i- By definition of hyperinclusion — 
Definition [8P we know that |e]e C (\9.(\e9\t)\)e, so |e][e = [ee] = [e] C (|e|t)|= 
(|ee|tH= (X9.(\ee\t)i)e. 

□ 

Proposition^ (Polarity of CRWLi et ) 

For any program e,e' G LExp±, t,t' G CTerm±, if e C e' and i' C t then e — o t 
implies e' —> t' with a proof of the same size or smaller — where the size of a 
CRWL; et -proof is measured as the number of rules of the calculus used in the 
proof. 

Proof 

By induction on the size of the CRWL-derivation. All the cases are straightforward 
except the (Let) rule: 
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(Let) We have the derivation: 

e\ -> tx e 2 [X/tx] ->t , 

> — (Let) 

e = let X = e\ in e 2 —> t 

Since e C e' then e' = let X = e\ in e' 2 with ei C and e2 t ej. As ex E 
and ii C — because C is reflexive — then by IH we have —> tx- We know 
that e 2 C e 2 so by Lemma 24 we have e2[-X"/ti] C e' 2 [X/tx] and by IH V \-cRWL let 
e' 2 [X/tx] -> t' such that t' C i. Therefore: 

e'i-»*i e 2 [^Ai]^^ 
e' = let X = e[ in e' 2 -> t' [ & ' 

□ 

Proposition^ (Closedness under c- substitutions) 

For any e <E LExpx_, t G CTerm±, 9 e CSubst^, t G [e] implies f0 G [e0]. 
Proof 

By induction on the size of the CRWL; et -proof. All the cases are straightforward 
except the (Let) rule: 

(Let) In this case the expression is e = let X = ei in e 2 so we have a derivation 

ex^tx e 2 [X/tx]^t 



let X = ex in e 2 — > t 



(Let) 



By IH we have that exO —> txO and (e 2 [X/tx])6 —> td. By the variable convention 
we assume that X ^ dom(9) U vran (6), so by Lemma [l] e 2 [A/ti]6» = e 2 0[X/t 1 9] 
and e 2 9[X/tx&] —> tQ. Then we can construct the proof: 

exd^txB e 2 9[X/tx9]^te 
let X = exO in e 2 9 -> W [ & ' 

□ 

Theorem^ (Weak Compositionality of CRWLi et ) 
For any C € C'ntxt, e G LExp± 

[C[e]] = (J [C[i]] if W(C) n FV(e) = 

t£[e] 

As a consequence, {let X = ex in e 2 \ = Ut^Iei] I e 2[A/ii]]. 

We prove that C[e] — > t 3s G CTerm± such that e — > s and C[s] — > t. 

=>) By induction on the size of the proof for C\e\ — > t. The proof proceeds in a 
similar way to the proof for Theorem [I] page 53 so we only have to prove the (Let) 
case: 

(Let) There are two cases depending on the context C (since C ^ [ ]): 
• C = let X = C in e 2 ) Straightforward. 
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• C — let X = e\ in C) The proof is 

ex^h C'[e\[X/ti] 



C[e] = let X = e x in C'[e] -> t 



(Let) 



We assume that X (f. var(ti) by the variable convention, since X is bound in 
C and we can rename it freely. Moreover, we assume also that X ^ BV(C) 
because X is bound in C, so we could rename the bound occurrences in 
C. Therefore (dom([X/ti] U vrandX/h})) n BV(C) = and C'[e][X/h] = 



(C'[X/ti])[e[X/ti]] by Lemma[25j Since BV{C)C\FV{e) = by the premise 
and X G BV(C) then X <£ FV(e), so (C'[X/ii])[e[JC/*i]] = C'[JT/ii][e]. 
Then by IH 3s G CTerm±_ such that e -> s and C'[X/ii][s] -> i. Therefore 
we can build: 

e^h C'WlX/tJ^C'iX/hM^t 

C[s]=letX = e 1 inC'[s]->t 6 



(*) Using Lemma 25 as above and the assumption that X ^ var(s) by the 



variable convention, since X is bound in C and we can rename it freely. 



<=) By induction on the size of the proof for C[s] —> t. As before, the proof proceeds 
in a similar way to the proof for Theorem [l] page |53[ so we only have to prove the 
(Let) case: 

(Let) If we use (Let) then there are two cases depending on the context C (since 

• C = let X = C in e^) Straighforward. 

• C = let X = e\ in C) then we have e —> s and 

e^h C'[ S ][XAi]->t 
C[s]=letX = ei inC'[s] -> t [ & ' 

By the same reasoning as in the second case of the (Let) rule of the =>) 
part of this theorem, C'[s][X/ti] = C'[X/ti][s\. Then by IH C'[X/ti][e] -> t. 
Again by the same reasoning we have C'[e][A/ii] = C'[A/ti][e], so we can 
build the proof: 

ei^h C'WlX/tJ^C'lX/hM^t 

C[e] = let X = et inC'[e] ->t [ 6> 



This ends the proof of the main part of the theorem. With respect to the con- 
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sequence {let X = e x in e 2 }cRWL ht = Ut ie [ ei ] 6WLid h[^Ai]]cwL 1If we have: 

{let X = ei in e 2 ] CRWL let 

= {{let X = [ } in e 2 )[ei}} cRWLiet 

= U [let X = ti in e 2 ] CRWL, et by Theorem |5] 

*l6[ e l]ciJlVL lei 

= U l«2[X /ti]]cRWL M by Proposition [8] 

*i6[ei]cwi iet 

In the last step we replace let X = t\ in e 2 by e 2 [X/ti] which is a (Bind) step of 
— > ln f , so by Proposition [8] it preserves the denotation. □ 

For Proposition [5j in this Appendix we prove a generalization of the statement 
appearing in Section |4~2| (page 21 ). However, it is easy to check that Proposition [5] 



in Section |4.2| follows easily from points 2 and 3 here. 
Proposition^ (Monotonicity for substitutions of CRWLi et ) 
For any program e £ LExp± , t € CTerm± , a, a' G LSubst± 

1. If VX € V, s € CTerm± given <r(X) — > s with size if we also have (r'(X) — > s 
with size if' < if, then ecr — > t with size L implies ea' —> t with size L' < L. 

2. If a \— a' then ecr — > t implies ea' — > t with a proof of the same size or smaller. 

3. If a^a' then [ecr] C [ecr']. 

Proof 

1. If e e J g V, assume Xa —> t, then Xa' —> t with a proof of the same size or 
smaller, by hypothesis. Otherwise we proceed by induction on the structure of the 
proof ecr — o t. 

Base cases 

(B) Then t =_L and ea' — <>_L with a proof of size 1 just applying rule (B). 
(RR) Then e € V and we are in the previous case. 

(DC) Then e = c G CS" , as e ^ V, hence ecr = c = ecr' and every proof for 
ea —o t is a proof for ea' — > t. 

Inductive steps 

(DC) Then e = c(e±, . . . , e„), as e ^ V, and we have: 

eicr -> t\ ... e„cr -o t„ 



ea = c(e x cr, . . . , e„a) -o c(t l5 . . . ,t n ) = t 



(DC) 



By IH or the proof of the other cases Vi £ {1, ...,n} we have e,cr' — > t, 
with a proof of the same size or smaller, so we can built a proof for ecr' = 
c(eia' ', . . . , e„cr') — > c(ti, . . . , t n ) = t using (DC), with a size equal or smaller 
than the size of the starting proof. 
(OR) Similar to the previous case. 

(Let) Then e = let X = e\ in e 2 , as e ^ V, and we have: 

eicr -> ti e 2 a[X/ti] -> f 
Zet X = eicr m e 2 cr — > t ■ 

By IH we have eicr —> t±. By the variable convention we assume that X ^ 
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dom(a) U vran(a) and X ^ dom(a / ) U vran(a'). Then it is easy to check 
that VY € V, s, t € CTerm±, given y(c[A/£]) — > s with size A we also have 
Y(a'[X/i\) -o s with size X' < A". Then by IH we have e 2 a'[X/ti] -» t. 
Therefore we can construct a proof with a size equal or smaller than the starting 
one: 

777 !-■ , 7 (Let) 

let X — e\<j in e 2 cr — > t 

By induction on the size of the CRWL; et -proof. The cases for classical CRWL appear 
in ( Vado-Vfrseda 2002), so we only have to prove the case for the (Let) rule: 

(Let) In this case the expression is e = let X = e± in e 2 so we have a proof 

ei<7 — > t\ e2o[X/ti] — > t 



let X = ei<r in e 2 cr 



(Let) 



By IH we have that e\o — > t\. By the variable convention we can assume that 
BV(e) n (dom(a) U vran(cr)) = and BV(e) H (dom(a') U vran(a')) = 0. With 
the previous properties it is easy to see that a[X/ti] C <j'[X/ti], so by IH 
e2<j'[X/ti] — o t. Therefore we can build the proof: 

eic' — > t\ e20 J [X/t±] — > t 



let X — e\o' in e 2 er' 
By induction on the structure of e: 



[Let) 



eeIeV - In this case \Xa\ CRWL, et Q \Xa'\ CRWL, et because by the hypothesis 
a < a'. 

e = h(e\, . . . , e n ) - Applying Theorem [5] with C = h([ ], e2fr, . . . , e n a) we have 
Ihiao-, . . . ,e n a)]cRWL lct = lC[eia]J C RWL let = U [ c [*]]ci?W£, et because 

BV(C) = 0. On the other hand, by Theorem [5] we also know that 

\h(ei(j', e 2 cr, . . . , e n cr)}cRWL let = \C[eia']\cRWL lct 

U \C\t]\cnwL» 

Since by IH we have [eicr]c_RWL iet Q [ e i <7 'l CRWL lct it is easy to check that 

U wworwlhQ U pwi 

CRWL lei 

t£\e-i_<y\cnwL let tefe 1 a-'JcaWL let 

so \h(e\cr, e 2 <r, e n a)j cRWL lct Q \h(e\o-' , e 2 er, . . . , e n a)j cRWL let ■ Using the same 

reasoning in the rest of subexpressions e^cr we can prove: 

[h(eia', e 2 <r, . . . , e n a)j cRWL let C \h(e\cr' , e 2 cr', e 3 cr . . . , e n a)j cRWL let 

\h(e\o-', e 2 er', e 3 a . . . , e n cr)] cwL, rf C . . , e 3 a', e 4 cr . . . , e n cr)] cwL !rf 

[. . . , e„_icr', e„cr)l cwL ief C [/i(eic/, . . . , e„cr')J ORWZ w 
Then by transitivity of C we have: 
[/i(ei,...,e„)a-]cwi ieJ = {h(eia, . . . , e n a)j CRWLlet C 
[/i(ei<r', . . . , e n o-')]ciiiVL iet = [^(ei, ■ • ■ , e n )a'j C RWL let - 
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e ee let X — e\ in e 2 - As Theorcmjslstates, {let X = e\a in e 2 cr]cRWL kt = U [eac^AilJcWiw 

tiele 1 alc;RWL let 

By the Induction Hypothesis we have that [eicrjcflwz,,,,, Q [ei<7']cflWX iet - Due to 
the variable convention we assume that X ^ dom(o~)Uvran(a) and X £ dom(a')U 
vran(a'), so it is easy to check that a[X / 1] <S a' [X / 1) for any t £ CTerm. Then by 
the Induction Hypothesis we know that [e2<T[X/t]]cKW£ te4 Q {e2&'[X/t]lcRWL lC f 
Therefore 

[(let X = ex in e 2 )aj C RWL let = U l e 2<r[ x /ti]]cRWL let 

tielei<j}cHWL lct 

C U \eW[X/h]}cRWL let 

ti&leicr'jcRWL lct 

= {let X = exo' in e 2 cr']cRWL let 
= {(let X = e 1 in e 2 )(j'jcRWL lst 

□ 

Theorem^ (Compositionality of hypersemantics) 
For all C £ Cntxt, e £ LExp± 

P[e]l = IC]Iel 
As a consequence: |el = |e'] «• VC £ Cntxt. = lC[e% 
Proof 

By induction over the structure of contexts. The base case is C = [], so |C[e]| = 
H = I DIM = PIM, as |01 is the identity function by definition. Regarding 
the inductive step: 

C = /j(ei,..., e„): Then 

[C][e] = A0. U lh( ei e,...,t,...,e n e)} 

= A0. U [MM,...,*,.-.,enfl)l bylH 
te[C[e]]e 

= A0. 1J [ft,(ei0,...,t, ...,e n 0)] by definition 

t6[(C'[e])0] 

= A0.[/i(ei0, . . . , (C'[e])0, . . . , e„0)] by Lemma [5] 

- A0.[(C[e])0] = IC[e]l 

C = let X = C in s: Then 



jj_ej|j = A0. (J {let X = t in s0] by definition 

telC'Hep 

= A0. U [s0[X/t]] by rule (Bind)« 

= A0. U bylH 

teIC[e]]e 

= X6. 1J [s0[X/t]] by definition 

te[(c[e])e] 

= A0.[/ei X = (C'[e])0 m s0] by Lemma[5] 

= P[e]l 

(*): by Proposition [| [/et X = t in s6\ = \aO[X/t]\ since let X = t in sO -V n/ 
s6[X/t}. 
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• C = let X = s in C ': Then 

PJIeJ = A0. U P'lIeMW]) 

= X9. U iC'[e]\(e[X/t]) byffl 

= A6>. (J [(C'[e])(0[X/f])] by definition 

te we 

= A6>. U [(C'[e])(0[Jr/i])] by definition 

= A0. U {{(C'[e])6)[X/t]\ 

= A6».[Zei X = sO in {C'[e])6\ by Lemma| 

= IC[e]l 

□ 

Proposition [6| 

Consider two sets A, B, and let T be the set of functions A — > V(B). Then: 

i) <s is indeed a partial order on J 7 , and A/ is indeed a decomposition of / G J 7 , 
i.e., W (A/) = /. 

ii) Monotonicity of hyperunion wrt. inclusion: for any 1x^1% C J 7 

2i C 2- 2 implies LLU X Y <s LUJ Z 2 

iii) Distribution of unions: for any 2i,Z 2 C J 7 

iyj (2iux 2 ) = (itu 2 X )y (iyj 2 2 ) 

iv) Monotonicity of decomposition wrt. hyperinclusion: for any /i, /a G -T 7 

/i <£ /2 implies A/i C A/ 2 

i) The binary relation <s is a partial order on J 7 because: 

• It is reflexive, as for any function / and any x € A we have that f(x) = fix), 
and thus f(x) C /(a;), therefore / <e /. 

• It is transitive because given some functions /i,/2,/3 such that /i d / 2 and 
/2 € /3, then for any i£ Awe have /i(x) C / 2 (x) C /3(x) by definition of 
m, hence / a m fz- 

• It is antisymmetric wrt. extensional function equality, because for any pair of 
hypersemantics f\ , / 2 such that f\ d / 2 and / 2 <s /i and any x £ A we have 
that /i(x) C / 2 (x) and / 2 (x) C /i(x) by definition of <s, hence /i(x) = / 2 (x) 
by antisymmetry of C and f\ = / 2 . 

In order to prove that A/ is indeed a decomposition of / € J 7 we first perform a 
little massaging by using the definitions of ItU and A. 

W (A/) = W {Xa.{b} \aeA,be f(a)} = Xx e A. \J \J [Xa.{b})x 

a£A bef(a) 
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Now we will use the fact that <e is a partial order, and therefore it is antisymmetric, 
so mutual inclusion by <<= implies equality. 

• / (s lUI (A/): Given arbitraries a G A, 6 G /(a) then 

(IUJ (A/))a= U U (Az.M)a 

D U (Xa.{y})a as a G A 

ye/(a) 

= U M 3 & as 6 G /(a) 

• IUJ (A/) <E /: Given arbitraries a G A, & G (ItU (A/)) a then we have that 
6 G |J |J (Ax.{y})a, therefore 3x G A, y G /(x) such that 6 G (Aa;.{y})a. 

But then a = x — otherwise (Xx.{y})a = — and y = b — because b G 
(Xx.{y})a — {y} — , and so y G f(x) implies b G f(a). 

ii) Given an arbitrary a G A then 

(iyjli)a= 1J /(a) by definition of IUJ 

feii 

C |J /(a) as Ii C 1 2 

fex 2 

= (IUJ X 2 )a by definition of IUJ 

iii) 

W (2i UI 2 ) = Aa. U /(a) by definition of IUJ 

/e(XiUi 2 ) 

= Aa. U /(«) U U /(a) 
feii /gi 2 

= Aa.(lUJ X x )a U (IUJ l 2 )a by definition of IUJ 

= (IUJ 2T X ) IUJ (W T 2 ) by definition of W 

iv) Suppose an arbitrary Aa.{&} G A/i with a € A and 6 G /i(a) by definition. Since 
/i <e f 2 then /i(a) C / 2 (a). Therefore b G / 2 (a) and \a.{b} G A/ 2 . 

□ 

Proposition^ (Distributivity under context of hypers emantics union) 

new i?) = w ici^ 

Proof 

We proceed by induction on the structure of C. Regarding the base case, then C = [] 
and so: 

PKlUJ H) = IUJ H by definition of [C] 
= IUJ if 

V>£ H 

= IUJ [Cl</5 by definition of \C\ 

For the inductive step we have several possibilities. 
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• C = h(e±, . . . ,C, . . . , e„): then 

[CJ(IUJ H) = X6. U IKex 

t£lC'l(iyj H)8 

= \e. u MeiO, 

te((liiJ {ici v | <peff»e) 
= X6. U [%i0,...,t,...,e n 0)] 
*e( U Wl<p6) 

•peH 

= A0. U U [fc(ei0,...,t,...,e„0)] 
¥>e# teic'l¥>e 

= A0. U Pl^ 

= W \q<p 

if e h 

• C = let X — C in e: then 

|C][(iyj if) = XO. U [ZetX = tme6 

teIC'l(iyj H)8 

= X6. U pet X = tin e6\ 

= A0. U Pei X = tin e9j 
*e( U IC'lve) 

= XQ. {J U [Zet X = tin e6\ 
= XO. U lC\<pO 

ipGH 

= w m<p 

if e h 



.,<,..., e n 9)j by definition of [CJ 
e n 0)l byffl 

by definition of ItU 



by definition of [CJ 
by definition of ItU 

by definition of |C1 
by IH 

by definition of ItU 

by definition of fCJ 
by definition of ItU 



• C — let X = e in C : then 

H) = X6. U [C'l(iyj fl")(0[X/t]) by definition of 

IJ {[C'l^| V € H»(fl[X/t]) 



= A0. U 

te We 

= A0. u U lc'M0[x/A) 
= A0. U U IC'MTOD 

= A0. U 

= W p% 

□ 



by IH 
by definition of ItU 
as -ff is independent from t 
by definition of [CJ 
by definition of ItU 



A . 7 Proofs for Section \j.3\ 

Theorem^ (Hyper-Soundness of let-rewriting) 
For all e,e' € LExp, if e ^ r e' then [e'l <s [ej. 

Proof 

We first prove the theorem for a single step of — > l . We proceed assumming some 
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9 G CSubst± such that e'9 —> t and then proving ed — > i. The case where £ =_L 
holds trivially using the rule B, so we will prove the rest by a case distinction on 
the rule of the let-rewriting calculus applied: 

(Fapp) Assume f(t\, . . . , t„) — > l r with (/(pi, ■ ■ ■ ,p n ) — > e) € "P, <r G CSubst, such 
that yi.piU = ti and ecr = r, and 6 CSubts± such that rf? — > £. Then as 
a9 G CSubts±,Vi.pi(r8 = t$ and ea9 = r9 we can use the (OR) rule to build the 
following proof: 

Lemma [T8l Lemma H8l 

U0-+UQ ... t n e->t n 6 r9^>t 

( UH ) 



(Letln) Assume h(. . . , e, . . .) —r let X — e in h(. . . , X , . . .) by (Letln) and 9 G 
CSubts± such that (let X = e in h(. . . , X, . , .))0 -> t. This proof must be of the 
shape of: 

e6-+ti h{d 1 6,...,X0,...,d n 6)[X/t 1 ]-+t 
let X = ed in hfae, ...,X6,..., d n 6) -> t ^ & ' 

for some di, . . . , d n G LExp,ti G CTerm±. Besides X £ (dom(9) U vran(9)) by 
the variable convention^] hence X9 = X and so h(d±9, . . . , X9 7 . . . , d n 6)[X/t{\ = 
h{d\0, . . . ,tx, . . . , d n 0), as X is fresh by the conditions in (Letln) and so it does 
not appear in any di. Now we have two possibilities: 

a) h = c£ DC : Then h(di9, . . . , ti, . . . , d n 9) -> t must proved by (DC): 
d\6 — > Sj ... ii — > t'i ... d n 9 —> , 



c(d%6, ...,tx,... ,d n 9) -> c(s x , . . . , t[, . . . , s n ) = t 



(DC) 



for some s%, . . . , s n , t'-^ G CTerm±. Then t\ —> t\ implies t\ C t\ by Lemma 
[sj hence e9 — > t\ implies e9 — > t\ by Proposition [3j and we can build the 
following proof: 

d\9 — > si ... e9 — > t[ ... d n 9 —> s n 
h(...,e,.. .)9 ee c(di9, ...,e6,.. .,d n 9) -> c(si, ...,t[,.. . , s n ) = t 

b) h = / e FS : Then h(di6, d n 9) -> t must be proved by (OR): 

d\9 —> s\a ... t\ — » t[a . . . d n 9 —> s n a rcr —> t 



f(d 1 e,...,t 1 ,...,d n e)^t 



(OR) 



for some Si<j, . . . , s n a, t[a £ CTerm±, (/(si, ■ • • , t'i, ■ • ■ s n ) — >• r) e V, a G 
CSubst ±. Then we can prove e# — > t[a like in the previous case, to build 
the following proof: 

d\9 — > si<r ... e9 — > t\a . . . d n 9 —> s n a ra — > t 



h(...,e,...)6 = f(d 1 e,...,ed,...,d n 6)^t 



(OR) 



5 Actually, to prove this theorem properly, we cannot restrict the substitution to fulfill these 
restrictions, so in fact we rename the bound variables in an a-conversion fashion and use the 
equivalence e[X/e'] = e[X/Y][Y/e'] (with Y the new bound variable), to use the hypothesis. 
This will be done implicitly when needed during the remaining of the proof. 
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(Bind) Assume let X = t\ in e— > l e[X/t\\ by (Bind) and 9 £ CSubst± such that 
(e[X/ti})8 -> t. Then X £ (dom(9) U vran(9)) by the variable convention, so we 
can apply Lemma [l] (Substitution lemma) to get e9\Xjt\9\ = (e[X/t\})9. Besides 
t\ G CTerm and € CSubst± by hypothesis, hence G CTerm± and we can 
build the following proof: 

Lemma H8l 

hO - he eeix/he] = (ejx/t^e -» t 

let X = t 1 6 ineO^t ^ 6 ' 

(Elim) Assume let X — e\ in en —r en by (Elim) and 9 E CSubts± such that 
e 2 9 — > t. Then X <=£ vran(9) by the variable convention and X ^ FV(e 2 ) by the 
condition of (Elim), hence e 2 9\Xj _L] = e 2 9 and we can build the following proof: 

(B) 



e x 9 ->i. v ; e 2 9[X/ 1_] = e 2 9 -» t 

let X = e x 9 in e 2 9 -> t ^ & ' 

(Flat) Assume let X = (let Y — e\ in e 2 ) in e 3 — v let Y — e^in (let X = e 2 in e 3 ) 
by (Flat) and 9 g CSubts± such that (let Y = e\ in (let X — e 2 in e 3 ))9 —> t. 
This proof must be must be of the shape of: 

e 2 9[Y/h] -» t 2 e 3 9[Y/h] [X/t 2 ] -» t 
e x 9 -o h (let X = e 2 9 in e z 6)\Y/t x ] -•> t | 6 j 
Zet 1" = ei# in (let X = e 2 9 in e 3 9) — > t 

for some ti,t 2 € CTerm±. Besides Y ^ vran(9) by the variable convention and 
Y FV(e 3 ) by the condition of (Flat), hence e 3 9\Y/t{\ = e 3 9 and we can build 
the following proof: 

Hypothesis Hypothesis 
dfl h e 2 9[Y/h] — t 2 
let Y — e x 9 in e 2 9 -> t 2 ( 6 > e 3 9[X/t 2 ] = e^jY/t,} [X/t 2 ] -> t 

let X = (let Y = e x 9 in e 2 9) in e 3 9 -> t ^ 6 ' 

(Contx) By the proof of the other cases, |e'J <e |el, but then |C[e']l <s |[C[e]l by 
Lemma [7J and we are done. 

The proof for several steps is a trivial induction on the length of the derivation 
e^ 1 * e'. □ 

Proposition^ (The —} ln f relation preserves hyperdenotation) 

For all e,e' € LExp, if e e' then |el = [e'l— and therefore [e] = [e'|. 

Proof 

We first prove the lemma for one step of —^ ln ' by case distinction over the rule 
applied to reduce e to e'. By Theorem [9] we already have that Ve, e' € LExp if 
e ^' n/ e' then |e'J <e |ej, so all that is left is proving that |ej <s fle'J also, and 
finally applying the transitivity of <s , as it is a partial order by Lemma [6]d. We 
proceed assumming some 9 € CSubst± such that e9 -<> t and then proving e'# — > t. 
The case where t =_L holds trivially using the rule (B), so we will prove the other 
by a case distinction on the rule of the let calculus applied: 



70 Lopez-Fraguas et al. 

(Letln) Assume h(d\, . . . , e, . . . , d n ) — > l let X — e in h(di, . . . , X, . . . , d n ) by the 
(Letln) rule and 9 G CSubts± such that 

h(di, . . . , e, . . . , d n )0 = h(di9, . . . , e9, . . . , d n 9) -> t 

Then by the compositionality of Theorem [5] we have that 3ti G [e#] such that 
h(di9, . . . , ti, . . . , d n 9) — » t. Besides X is fresh and X (dom(9) U vran(9)) by 
the variable convention, hence 

(let X = e in h(d\, . . . , X, . . . , d n ))9 = let X — e9 in h(d\9, . . . , X, . . . , d n 9) 

and 

h{d x 8, ...,X,..., d n 9)[X/h] = h(d!9, ....ti,..., d n 9) 
and so we can do: 

hypothesis hypothesis 



e9 -> ti hjdie, ...,X,..., d n 6>)[X/ti] = hjdie, d n 9) -> t 

(let X = ein h(dx,.. -,X,.. .,d n ))6 = let X = e9 in h(d x 6, ...,X,.. .,d n 6) -> t ( 6 ' 

(Bind) Assume let X = t± in e— > l e\X/t{\ by (Bind) and 9 G CSubst± such that (let X = 
ti in e)9 = let X = ti# in eO — > Then it must be with a proof of the following shape: 

h6-+A e9[X/t' 1 ]^t 
let X = ti6 in e9 -o t £ ' 

But 9 G CSubst±_ and ti G CTerm implies t\8 G CTerm±, and so ti# — 1> t'x implies t'\ C 
ti6» by Lemma[5}l. Hence [X/ti] C [X/*i0] and so e9[X/t'i] -o t implies e0[X/ti#] -* t 
by the monoticity of Proposition [5] Besides X ^ (dom(9) U vran(8)) by the variable 
convention, and so we can apply Lemma [T] (substitution lemma) to get (e[X/ti])9 = 
e9[X/ti9], so we are done. 
(Elim) Assume let X — e\ in e 2 —r ei by (Elim) and 9 G CSubts± such that (let X = 
ei in e 2 )9 = let X — e\9 in e 2 9 — > t. Then it must be with a proof of the following 
shape: 

ei6> -> ti e 2 9[X/t 1 ] -> t 
let X = ei<9 in e 2 9 t ^ 6 ' 

Then X (jL vran(8) by the variable convention and X g' FV(e 2 ) by the condition of 
(Elim), hence e 2 9 = e29[X/t±] —> t, so we are done. 

(Flat) Straightforward since e3#[F/ii] = e^9 because Y ^ vran(9) by the variable con- 
vention and Y ^ FV(ez) by the condition of (Flat). 

(Contx) By the proof of the other cases, [el <s |e'J], but then [C[e]| (s lC[e']J by Lemma 
[7] and we are done. 

□ 

The following lemmas — Lemmas 29 30 31 and[32] — will be used to prove Lemma 



8. 

Lemma 29 

Let linear e, e\ G Exp such that e9 C ei for 8 G Subst±. Then 36*' G Subst such 
that e6>' = ei and 6> C 6>'. 



9'{Y) 



Theory and Practice of Logic Programming 71 

Proof 

By induction on the structure of e. For the base case (e = X G V) we define a 
function rep± : Exp± — > Exp — > rep±(e, e') that replaces the occurrences of 
_L in e by the expression e'. We define this function recursively on the structure of 
e: 

rep_i_(_L, e') = e' 
rep ± (Z, e') = Z 

rep±(h(e 1 , ...,e n ),e') = h(rep±(e 1 ,e'), . . . , rep±(e n , e')) 

It is easy to check that repj_(e, e') = e" implies e C e" . Then we define 6*' G Subst 
as: 

ei z/ X = y 

repx(6»(Y), Y) if Y G dom(9) \ {X} 
Trivially e& = XO' = e\ and 9 \— 9' because e6 C ei by the premise and 0(Y) E 
repx(fl(r),r). 

Regarding the inductive step — e = h(e±, . . . , e„) — we know that 

e6 = h(e-i9, e n 6) C e x = /i(e' 1; . . . , e^) 

so C e'j. Then by IH 3^ e Swfest such that e i 9' i = and ffC^. Then we define 
0' as: 

6>i(y) i/ye-yar(ei) 
0^(Y) z/ y G var(e 2 ) 

?'(Y) 

6' n {Y) ifYevar(e n ) 
I repx(0(Y), Y) z/ y e dom(d) \ war(e) 
The substitution 0' is well defined because e is linear. Then e0' = h(ei9' , . . . , e„0') = 
h(ei6[, . . . , e„6»;) = /i(e' 1; . . . , e' n ) = e x and 9 C 0' by IH and the fact that 0(Y) C 
ref>x(0(Y),Y). □ 

Lemma 30 

For any e G LExp ± , FV(\e\) C i?V(e). 
Proof 

Straightforward by induction on the structure of e. □ 
Lemma 31 

Given e G L£.xp, G LSubst±, \e9\ = |e|0 where (9 is defined as X0 = |X0| 
Proof 

By induction on the structure of e. We have two base cases: 
e = XeV. Then \e9\ = \X9\ = X9 = \X\9 = \e\9. 

e = f(e u ...,e n ). Then \e9\ = \f(e u . . . , e n )9\ = \f( ei 9,...,e n 9)\ = L=_L - 
|/(ei,...,e„)|fl= |e|0. 

Regarding the inductive step we have: 
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• e = c(ei, . . . , e„). Straightforward. 

• e = let X — e\ in e 2 . Then \e9\ = \{let X = e\ in e 2 )9\ — \let X — e\9 in e 2 9\ = 
\e 2 9\[X/\ei9\]. By IH we have that |e x 0| = | ei |0and \e 2 9\ = |e 2 |0, so \e 2 9\[X / \ ei 9\] = 
l e 2#| = G e 2|0)[A/|ei|0]. By the variable convention we can assume that X ^ 
dom(9) U v ran(9), and since dom(9) = dom(9) and vran{9) C vran{9) — using 
Lemma [jo] — we can use Lemma [l] and obtain (|e 2 |0)[X/|e 1 |0] = (|e 2 |[X/|ei|])0. 
Finally, (|e 2 | [X/\e x \])9 = [let X = e x in e 2 \9 = \e\9. 

□ 



Lemma 32 

Given e € 9 G LSubst^, if |e| =_L then |e0| =_L 

Proof 

By induction on the structure of e. Notice that e cannot be a variable X or an 
applied constructor symbol c(ei, . . . , e n ) because in those cases |e| t^_L. The base 
case e = f(e%, . . . ,e n ) is straightforward. Regarding the inductive step we have 
e = let X = ei in e 2 such that \let X — e\ in e 2 | = |e 2 |[X/|ei|] =_L. Then 
\e9\ = \{letX = ex in e 2 )9\ = \let X = e x 9 in e 2 9\ = \e 2 9\[X/\ ei 9\}. By Lemma 



23] |e 2 0|[X/|ei0|] = \{e 2 9)[X / &1 9]\, and since X £ dom{9) U vran(9) by the vari- 
able convention then we can apply Lemma [I] and \{e 2 9)[X / e\9]\ = \{e 2 [X / e\})9\. 
Finally by Lemma E] \(e 2 [X/ex])9\ = |e 2 [X/ei]|0, and by LemmaEi] |e 2 [X/ei]|0 = 



(|e 2 |[.Xy|ei|])0 = L0 = L □ 

Lemma^ (Completeness lemma for let-rewriting) 
For all e £ LExp and i £ CTerm± such that < ^_L, 



i implies e — > let X = a in t' 



for some i' € CTerm and a C LExp in such a way that t C \let X — a in t'\ and 
| a.; | =_L for every S a. As a consequence, i C t'[X/ -L]. 

By induction on the size s of the CRWLi et -\omoi, that we measure as the number 
of CRWL [et rules applied. Concerning the base cases: 

(B) This contradicts the hypothesis because then t =_L, so we are done. In the 
rest of the proof we will assume that t because otherwise we would be in this 
case. 

(RR) Then we have X -> X. But then I^'landlClE \X\, so we are 
done with X = 0. 

(DC) Then we have c — » c. But then c— c and c C c = |c|, so we are done with 
X = $. 

Now we treat the inductive step: 

(DC) Then we have e = c(ei, . . . , e„) and the Ci?WX; et -proof has the shape: 

ei -o tu . . . ,e n -o t n 
c(ei,...,e„) -> c(*i,...,t n ) 
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In the general case some U will be equal to _L and some others will be different. For 
the sake of simplicity we consider the case when n — 2 with t x = _L and t 2 ^ -L, 
the proof can be easily extended to the general case. Then we have c(ei,e2) — » 
c(_L, tz), so by IH over the second argument we get e 2 — > l let X 2 = a 2 in t' 2 with 



t'2 G CTerm, \a 2i | =JL for every a 2i € a 2 and |iei X 2 = a 2 in t' 2 \ — t' 2 \X 2 j _L] □ t 2 . 
So: 

c(c x ,e 2 ) — y c(ei,let X 2 — a 2 in t 2 ) by IH 

— > l let Y — (let X 2 — a 2 in t' 2 ) in c(ex, Y) by (Letln) 

-»•** let X 2 = a 2 in let Y = t' 2 in c(e x ,Y) by (Flat*) 

— y let X 2 — a 2 in c(ei, t' 2 ) by (Bind) 
Then there are several possible cases: 



a) e x = fi(e~[): Then let X 2 = a 2 in c(/i(ei), t^) let X 2 = a 2 in let Z = 
/i(el) in c(Z,f 2 ), by (Letln). So we are done as |a 2i | =_L for every a 2i 
by the IH, |/i(ei)| =J_ and \let X 2 = a 2 in let Z — /i(eY) in c(Z,t' 2 )\ = 
c(Z, t' 2 )[X 2 / ±,Z/ _L] □ c(_L,t 2 ) because t' 2 \X 2 j _L] □ t 2 by the IH, and Z 
is fresh and so it does not appear in t 2 

b) e\ = t[ e CTerm: Then we are done as \a 2 . \ =_L for every a 2i € 02 by 
the IH, and \let X 2 = a 2 in c^,^)! = c(t' 1 ,t' 2 )[X 2 / _L] □ c(±,t 2 ), because 
t' 2 [X 2 / _L] □ t 2 by the IH 

c) e\ = Ci(e[) $ CTerm with c\ G CS: Then by Lemma [3] we have the 
derivation Ci(eT) — y let X\ = fiit^) in Ci(ii). But then: 



let X 2 = a 2 in c(ci(ei), t' 2 ) 



— y let X 2 = a 2 in cilet Xi = /i(^) in Ci(ti),t' 2 ) Lemma[3] 
^ l let X 2 = a 2 in let Y = (let X x = f x (fi) in Ci(ty)) in c(Y,t' 2 ) by (Letln) 
-!- r let X 2 = a 2 in let Xi = fi(t[) in let Y = a(h) in c(Y,t' 2 ) by (Flat*) 
— > l let X 2 — a 2 in let X\ = fi(t[) in c(ci(h),t 2 ) by (Bind) 

In the last step notice that Y is fresh and it cannot appear in t' 2 . Then 
we are done as \fi(t' i )\ =_L, |a2 4 | =-L for every a 2i € S2 by the IH, and 



\let X 2 = a 2 in let X x =/ 1 (f / 1 ) in c(c x (h),t' 2 )\ = c(c x (t x ), t' 2 ) [Xi/_L\ [X 2 / L] 
□ c(_L, t 2 ) because t' 2 [X 2 / _L] □ t 2 by the IH, and no variable in X x appears 
in t' 2 by a-conversion, as those are bound variables which were present in 
Ci(ei) or that appeared after applying Lemma [3] to it, and this expression 
was placed in a position parallel to the position of t' 2 . 
d) e x = let X — e xx in e X2 : Then by Lemma [3] let X — e xx in e X2 — > l 
let X x = f x (t[) in e" where e" € V or e" = h x (h). Then: 



let X 2 — a 2 in c(let X — e xx in e X2l t 2 ) 

— > l let X 2 = a 2 in c(let X x — f X (t x ) in e",t' 2 ) by Lemma |3] 

^ l let X 2 = a 2 in let Y = (let X x = f x (t[) in e") in c(Y, t 2 ) by (Letln) 

^ r let X 2 = a 2 in let X x = f x (t[) in let Y = e" in c(Y, t' 2 ) by (Flat*) 

Then we have two possibilities depending on e": 
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i) e" = Z e V: Then we can do: 



let X 2 = a 2 in let X\ = in let Y = Z in c(Y,t 2 ) 

-V let X 2 = a 2 in let X x = in c(Z, t' 2 ) by (Bind) 

Then we are done as =-L, |a 2i | =-L for every a 2 . E ai by IH, and 

|/e* X 2 = a 2 m X x = A(t[) m c(Z,i 2 )| = c(Z, t' 2 )\X^J ±][X 2 / _L] □ 
c(_L,i 2 ), as i 2 [X 2 / _L] □ t 2 by IH, and no variable in X\ appears in t' 2 
by a-conversion, like in the case c). 
e" = hi(ti): there are two possible cases: 

A) h\ = fi € FS 1 : We are done as |/i(^)| =-L, |a2 4 | =-L for every a 2i E 
02 by IH, =JL, and \let X 2 — a 2 in let X\ = /i(t^) in let Y = 

in c(Y, t' 2 )\ = c(Y, t' 2 )[Y/ L]\Xll±]\X 2 /L] □ c(±, t 2 ), as by IH 
t' 2 [X 2 /JJ\ □ t 2 , Y is fresh and so it does not appear in t' 2 , and no 
variable in X\ appears in t' 2 as in the case i). 

B) hi = c\ E DC: Then we can do a (Bind) step: 



let X 2 = a 2 in let X\ = in let Y = ci{t\) in c(Y,t' 2 ) 

— > L let X 2 = a 2 in let X\ — a\ in c(ci(ti),t' 2 ) 

Then we are done as |/i(£i)| =-L, \a 2i \ =-L for every a 2i E 02 by IH, 
and 



\let X 2 = a 2 in let X\ = /1 (t 1 ) in c{c\{ti),t' 2 )\ 

= c( Cl (r 1 ),t / 2 )[xyT][x 2 JT] 

□ c(±,t 2 ) 



as t' 2 \X 2 j _L] □ t 2 by IH, and no variable in X\ appears in t' 2 , as we 
saw in i). 

(OR) If / has no arguments (n — 0) then we have: 

f^t { ° R) 

with (/ —> r) E V and 9 E CSubst±. Let us define 9' E CSubst as the sub- 
stitution which is equal to 9 except that every _L introduced by 9 is replaced 
with some constructor symbol or variable. Then 9 C 9', so by Proposition [5] we 
have r9' — > t with a proof of the same size. But then applying the IH to this 
proof we get r& — > l let X = a in t' under the conditions of the lemma. Hence 
/ r9' let X = a in t' applying (Fapp) in the first step, and we are done. 

If n > 0, we will proceed as in the case for (DC), doing a preliminary version for 
/(ei,e2) — > t which can be easily extended for the general case. Then we have: 

d ->_L e 2 -ot 2 r9 ->t , 

77 ^ 7 ( UH > 

/(ei,e 2 ) -> t 

such that t 2 ^_L, and with {f{pi,p 2 ) — > r) E V, 9 E CSubst^, such that 
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P\9 =_L and p 2 9 = t%. Then applying the IH to e 2 -> t% we get that e 2 — > l 
let X 2 — a 2 in t' 2 such that |o2<| =-L for every a 2i and \let X 2 = a 2 in t' 2 \ = 
t' 2 [X 2 / _L] □ t 2 . Then we can do: 



/(ei,e 2 )-r f( ei,let X 2 = a 2 in t' 2 ) by IH 

let Y = (let X 2 = a 2 in t' 2 ) in f(e u Y) by (Letln) 

^ r let X 2 = a 2 in let Y = t' 2 in f(e u Y) by (Flat*) 

->•' let X 2 = a 2 in f(ei,t 2 ) by (Bind) 

Then applying Lemma [3] we get 

/(ei,t' 2 )^ r letX 1 =f 1 {V)in f(t[,t' 2 ) 

there must exist 



29 



Now as t' 2 [X 2 / _L] □ t 2 then (t[,t 2 ) □ (J-,t 2 ), so by Lemma 
& £ CSubst such that 9 C 9' and (pi,p 2 )9' = (t[,t 2 ). Then by Proposition [5] as 
r9 — o t then r9' —> t with a proof of the same size. As 9' £ CSubst and e £ LExp 
(because it is part of the program) then r9' £ LExp and we can apply the IH 
to that proof getting that rff — > l let X = a in t' such that |a«| =_L for every Oj 
and \let X = a int'\ = t'[X/ _L] □ t. Then we can do: 



let X 2 = a 2 in f(ei,t' 2 ) 



let X 2 = a 2 in let Xi = /i(i') in f(t[,t' 2 ) by Lemma| 



= let X 2 — a 2 in let X\ — f\(t') in f(px,P2)6' 

-> l let X 2 = a 2 in let X\ = fi(t') in r& by (Fapp) 

-> r let X 2 = a 2 in let X 1 = /i(F) in let X = a in t' by 2 nd IH 

Then \a 2i \ =_L for every a 2i £ 02 by IH, |/i(f')| =-L and |a«| =JL for every at by 
IH. Besides the variables in X 1 UX 2 either belong to BV (ei)U BV (e 2 ) or are fresh, 



hence none of them may appear in t (by Lemma 27 over f(e\ ,e 2 ) — > t or by fresh 



ness). So t'[X/ _L] □ t implies that Vp £ 0(t') such that t'\ p = Y for some Y £ 
Xi U X 2 then t\ p =J_. But then \let X 2 = a 2 in let Xi — ai in let X = a in t'\ = 
t'\Xjl]\X^Jl]\X 2 Jl]^t. 
(Let) Then e = let X = e\ in e 2 and we have a proof of the following shape: 

e\ -> ti e 2 [X/ti] -> t 



let X = e\ in e 2 —> t 
Then we have two possibilities: 



{Let) 



a) ti =_L: Then e 2 [X/tx\ = e 2 \Xj _L] C e 2 . Hence, as e 2 [X/ti] — > t and 
[X/ti] C e, by Proposition [5] we get e 2 e = e 2 —> t with a proof of the 
same size or smaller, and so by IH we get e 2 —> l let X = a in t', with 
t' £ CTerm, \ai\ =_L for every and \let X = a in t'\ = t'[X/ _L] □ t, and 
we can do: 

let X = e\ in e 2 — > l let X — e\ in let X = a in t' 



Besides X ^ var(t) by Lemma 27 over let X = e\ in e% — > t, and then 
t'[X/ 1] □ i implies Vp £ 0(f) such that t'\ p = X then t\ p =_L, and we 
have several possible cases: 
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ei = /i(ei): Then we are donde because \a\ = _L by IH, |/i(ei)| =_L and 
\letX = fi(ei) in let X = a in f| =t'[X/ ±][X/ _L] □ t, as t'[X/ _L] □< 
and Vp £ 0(t') such that t'\ p = X then t\ p =_L, as we saw above, 
ei = G CTerm: But then 



Zet X = ^ in let X ^ a in t' Zet X = a[X/t[} in tf[X/t'x\ by (Bind) 

and we are done because |o| = _L by IH, and so |a[X/t^]| = _L by 
Lemma 32 Besides, as in i), f[X/ _L] □ t combined with the fact 
that Vp € 0(t') such that t'\ p = X we have t\ p =_L, implies that 
\let X = a[X/t[] in t?[X/t' x ]\ = t'X/t'^X/ _L] □ t. 
ei = ci(eT) ^ CTerm with ci € C5: Then by Lemma [3] we have 
Ci(eT) — ?>' Zet Xi = fx{t\) in ci(ii), hence 



/ei X = Ci(ei) in let X ^ a in t' 

—y let X — (let X\ — /i(ti) in Ci(ii)) in let X = a in t' by Lemma[3] 

let X~i = fi(h) in let X = ci(il) in let X = a in t! by (Flat*) 

->•' let Yx = Ji(fT) in let X = a[X/a(h)} in t'[X/ Cl (h)} by (Bind) 

As by IH \a\ = X then \a{X/a(h)}\ = X by Lemma 32 At this 



point we have to check that \let X\ — a± in let X — a[X/c\(ti)] in 
t'[X/ Cl (h)}\ = t' [X/ci (FT)] [X/ ±] [Xi I _L] □ t. The variables in X~[ ei- 
ther belong to BV(ci(W[)) or are fresh, hence by a-conversion none of 
them may appear in t', because in let X — ci(eT) in let X = a in t' 
the expression t' has no access to the variables bound in ci(eT). Hence 
t'[X/ Cl (tl)][X/ ±}[X 1 / _L] ee t'[X/t"][X/ _L], for some t" e CTerm±. 
But then, as in ii), t'\Xj _L] □ t combined with the fact that Vp € 0(t') 
such that t'\ p ee X we have t| p ee_L, implies that t'[X/t"][X/ _L] □ t. 
ei ee Zet y = en in ei2: Then by Lemma^we have let Y = en in ei2 — 
let Xi — /i(ti) in hi(ti), and so 



let X — (let Y = en in ei 2 ) in let X — a in t 1 

— y let X — (let X\ = fi(ti) in hi(t\)) in let X = a in t' by Lemma[3] 
-> r let X\ = in let X = h^tx) in let X = a in t' by (Flat*) 

Then either h € CS and we are like in Hi) before the final (Bind) step, or 
he FS and \hi(tl)\ =_L and \a\ = X (by IH), and \let X x = ax in let X = 
hi(W) in let X = a in t'\ ee t'[Xj±][X/ ±]\X l ~/ I] = t'[X/ _L][X/ _L] 
because X 1 n-yar(t') = 0, as we saw in Hi). But then, as in ii), t'\Xj _L] □ 
t combined with the fact that Vp £ 0(t') such that t'\ p = X we have 
t\ p ee_L, implies that t'[X/ ±][X/ _L] □ t. 



ti ee^_L: Then by IH we get e\ — y let X\ = a\ in t' ly with t[ € CTerm, 
|oi 4 | ee_L for every a\ i and |Zet Xi = ai in ee ^[Xl/ _L] □ ti. Hence t\ C 
ti and so e 2 [X/t 1 ] C e 2 [X/ti], but then e 2 [X/t 1 ] -> t implies e 2 [A/ti] -> t 
with a proof of the same size or smaller, by Proposition [3j Therefore we 
may apply the IH to that proof to get e2[X/t' 1 ] let X = a in t! , with 
t' G CTerm, \a, t \ ee_L for every a, and \let X = a in t'\ = t'[X/ _L] □ t. But 
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□ 



then we can do: 

let X = e\ in e 2 — > 
^ r let X\ 
-V let XT 



J * let X 1 



let X = (let Xi 
- a\ in let X = t[ in e 2 
ai in e 2 [X/t[] 



ai in t^) in e 2 



a\ in let X = a in t' 



bylH 
by (Flat*) 
by (Bind) 
bylH 



Then by the IH's we have \a\ — _L and |aT| = -L- Besides the variables in X\ 
either belon g to BV(e\) or are fresh, hence none of them may appear in t 
(by Lemma 27 over let X = e\ in e 2 — > t or by freshness). So t'\Xj _L] □ t 



implies that Vp £ 0(t!) such that t'\ p = Y for some Y £ X\ then t\ p =_L. 
But then \let X 1 = a x in let X = a int'\= t'[X/ T]\JCJ _L] □ t. 



Lemma QJj 

If BV(C) n FV{ei) 

ei in C[e 2 ll 



A. 8 Proofs for Section^ 

and X £ FV(C) then |C[/et X 



d m e 2 ]l = pet X 



/Yoo/ 

One step of the rule (Dist) can be replaced by two steps (CLetln) + (Bind) : 

C[let X = ex in e 2 ] let U = e x in C[let X = U in e 2 ] -> l let U = e x in C[e 2 [X/U]} 

followed by a renaming of U by X in the last expression. Then the lemma fol- 
lows from preservation of hypersemantics by (CLetln) and (Bind) (Lemma [9] and 
Proposition [8]). □ 

Proposition^ ((Hyper) semantic properties of '?) 
For any ei, e 2 € LExp± 



i) [' 

ii) lei 



e\ ? e 2 



|eil U |e 2 J 
? e 2 ] = M W M 



Proof 

i) Direct from definition of ? and the CRWL-proof calculus, 
ii) 

\ex ?e 2 ] = A0.[(ei ? e 2 )i 
= A0.[ei0 ? e 2 6\ 
= Xe.({ex0l U [e 2 0J) 
= X9.(lexp U le 2 ]0) 
= leil Ie 2 ] 

□ 



by definition of | 
by 

by definition of | 
by definition of U=U 



A. 9 Proofs for Section^ 



Theorem 

For any e, e' € LExp, e e' implies e# — > L e' . 
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Proof 

First we prove the soundness of narrowing for one step, proceeding by a case dis- 
tinction over the rule used in e-^ l e e'. The cases of (Elim), (Bind), (Flat) and 
(Letln) are trivial, since narrowing and rewriting coincide for these rules. 

(Narr) Then we have f(t) -^ l e r9 for (f(p) -> r) G V fresh, 9 G CSubst such that 
f(t)9 = f(p)9. But then (f(p) -> r)9 = f(p)9 -> r9 = f(t)9 -> r0, so we can do 
efl = /(t)0 r0 = e' by (Fapp). 

(Contxt) Then we have C[e] -^ l e C0[e'] because e~^ l ge' . Let us do a case distinc- 
tion over the rule applied in e-^ l g e': 



a) e~*' e e' = f{t)^ l e rd by (Narr), for (f(p) -> r) G V fresh, so f(t)9^ l r9 
by (Fapp). Then (C[e])0 = (C[e])0|\„ ai .(p), because the variables in var(p) 
are fresh as (f(p) — > r) is. But then, as dom(8)r\BV(C) = and vRan(9\\ var ^ 
BV(C) = by the conditions in (Contx), and dom(9) n SV(C) = implies 
dom(0|\„ ar (p))ni?T^(C) = 0, we can apply Lemma 25 getting (C[e])d\\ var rp\ = 

C^|\«ar(p)[e^|\uar(p)] = C0|\var(£) [/(i)0|\„ O r(p)] = because the 

variables in var(p) are fresh. Besides vran(9\\ var (^- j ) n .BV(C) = 0, so 
we can apply (Contx) combined with an inner (Fapp) to do (C[e])0 = 
C9[f(t)9]^ l C9[r9] = C9[e'}. 



b) In case a different rule was applied in e-^ l g e' then 9 — e. By the proof 
of the other cases we have e9 = e^ 1 e', so (C[e})8 = C[e] -+ l C[e'] = C9[e'] 
(remember 9 = e). 

Now we prove the lemma for any number of steps — , proceeding by induction 
over the length n of e e'. The case e e = e' is straightforward because 
e — >' e = e'. For n > we have the derivation e e" e' with 9 = joa. By 

the proof for one step ea — ?>' e", and by the closeness under CSubst of let-rewriting 
(Lemma[2]) ea^ — > l e"^. By IH e"7 — >' e', so we can link e9 = ea^j^t 1 e""f — > l e'. 

□ 



Lemma 



11 



(Lifting lemma for the let-rewriting relation — > l ) 
Let e, e' G iSxp such that e6 — > l * e' for some 9 G CSubst, and let W, S C V with 
efom(0) U FV{e) C W, W(e) C 6 and (dom{9) U vran{6)) n B = 0, and for each 
(Fapp) step of e6> — >' e' using a rule J? e P and a substitution 7 6 CSubst then 
WQOT^Iu.Eatraf.R)) ^B = 0. Then there exist a derivation e e" and 0' G CSubst 
such that: 

(i) e"0' = e' (ii) cr(9' = 0[W] (hi) {dom{9') U uran(0')) n B = 

Besides, the let-narrowing derivation can be chosen to use mgu's at each (Narr) 
step. 

Proof 

Let us do a case distinction over the rule applied in e6 — > l e': 
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With an (Fapp) step e9 = f(t)9^ l rj with (f(p) -) r) € f, 7 £ CSubst, such 
that f(t)9 = f(p)"f and f(p) — > r is a fresh variant. We can assume that dom(^) C 
FV(f(p) — > r) without loss of generality. But then dom{9) n dom{"f) = 0, and 
so t±J 7 is correctly defined, and it is a unifier of f(t) and /(p). So, there must 
exist a = mgu(f(t),f(p)), which we can use to perform a (Narr) step, because 
a G CSubst and f(t)a=f(p)a. 

e = f(t)~> l a ra = e" 

As this unifier is an mgu then dom{a) C FV(f(t)) U FV(f(p)), vran(a) C 
F7(/(i))UFy(/(p)) and <r < (6*1+17), so there must exist 6[ G CSubst such that 
a9[ = 01+J7. Besides we can define 0q = 0|\( c ; om (ej)u.FV(/(t))) an d then we can take 
9' = 0qI+J6^ which is correctly defined as obviously dom(9' )r)dom(9' 1 ) = 0. Besides 
dom{9' ) n (FV(f(t)) U FV{f(p)) = 0, as if F G FV(f(t)) then F £ dom(0(,) by 
definition; and if V G FV(f(p)) then V g 1 dom(9) as p belong to the fresh variant, 



and so F ^ dom(9' ). Then the conditions in Lemma If hold: 



Condition i) e"9' = e': As e"0' = rcr0' = rcr^ because given Y G 
if F e FV(r) then it belongs to the fresh variant and so Y ^ dom{9) 2 
dom(9' ); and if F G uran(a) C FV(f(t)) U FV{f{p)) then F ^ dom(6' ) 
because doro(^) n {FV{f{t)) UFV{f{p))) = 0. But rcr^ = r(^ 7 ) = r 7 = 
e', because =01+17 an d r is part of the fresh variant. 
Condition ii) o9' = 9[W\: Given Y G W, if F G FV(f(t)) then F ^ dom(7) 
and so F0 ee F(0 W 7) = Fcr0i, as cr6>i = 6 W 7. But Fcr6>i = Yo9' because 
given Z G var(Ya), if Z ee F then as Y G FV{f(t)) then Z ee F <^ dom(9' ) 
by definition of 6^; if Z € vran{a) then Z ^ dom(9' ), as we saw before. 
On the other hand, (W \ FV{f{t))) n (FV(f(t)) U FV{f{p))) = (W \ 
FV(f{t)) n FV(f(t))) U (W \ FV(f(t)) n FV(/(p))) = U = 0, because 
FV(f(p)) are part of the fresh variant. So, if F G W \ FV(f(i)), then 
y £ dom(cr) C FV{f(t)) U FV(f(p)). Now if F G dom(9 / ) then F0 ee 
F0q (by definition of 0(,), F0£, ee F0' (as F G dom(d' )), Y6 1 = Yo& (as 
F g dom(cr)). If F G dom(0i), F(9 ee F(0 W 7) (as F G W \ FV(f(t)) 
implies it does not appear in the fresh instance), F(0 l+l 7) ee Y<t9[ (as 
o-9[ = 6 W 7), Y(t9'i = Y6[ (as F £ doro(cr)), F0i ee F0' (as F G dom(9' 1 )) 
and F0' ee Fcr0' (as F £ dom(cr)). And if F g (dom(0£) U dom{9' 1 )) then 
F £ dom(9'), and as F g dom(a) and F0 ee F(0l±l7), then Y9 = Y{9^) = 
Ya6[ ee F ee YoO'. 
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Condition iii.l) dom(6') n B = 0. Remember 9' = 9' & 9[: 

— dom(6' ) H B = 0: Given Y e dom(9' ) then Y e dom(9) by definition of 
#o, and so Y ^ Z?, because dom(9) D 2? = by hypothesis. 

— dom(8' 1 ) n B = 0: As cr is an mgu and a < 6* ttl 7, then dom(a) C 
dom(6< l+l 7). Given Z e S then Z £ dom(9), as dom(9) n S = by 
hypothesis, and Z ^ dom(-f) C FV(f(p) —¥ r) which are fresh, so 
Z £ dom(a). But then, as cr6»i = (9 W 7, Z = Z(6> ttl 7) = Zcr^i = Z6>i, so 
Z £ dom{9' l ). 

Condition iii.2) vran(9') n £ = 0. Remember 0' = 1% l±J ^: 

— vran(6' )r\B = 0: Given Y e dom(6' ) then Y0£, = Y0 by definition of 6^. 
As vran(9)C\B = by hypothesis then it must happen var(Y9) C\B = 0, 
so var(Y9' ) n B = 0. 

— vran(9[) n £> = 0: As = ttl 7 then we can assume dom(9' 1 ) C 
vran(a) U (dom(9 ttl 7) \ dom(a)). 

- Let A e dom(9[) n vran{a) be such that A6>i = r[Z] with 2e8. 
We will see that this Z e can appear in without lead- 
ing to contradiction. The intuition is, as vran(9) n £> = and 
wran(7|„£; a:t) , a (/{)) n = 0, then every Z € 2? must come from an ap- 
pearance in e of the same variable, transmitted to e' by the matching 
substitution 7, and so transmitted to e" by <r. 

As X e vran(a) then there must exist Y € dom(a) such that Y 1 — > a 
n[X] p r 2 [s[Z]] p . But as a9[ = 9 t±J 7 then Y r 2 [s[Z]] p . 

Then, Z € vran(#ttl7), but Z € B,vran(9)C\B = %,vran{^\ V E X tra(R))^ 
B = 0, dom(j) C FV(f(p) — > s), so it must happen Z G wron(7|^ y(p)), 
and as a consequence Y e fY(|5). Let o e 0(f(p)) (set of positions 
in /(p)) be such that f(p)\o = Y, then: 

• ((/(i))a)| = ((/(p))a)| = ((/(p))|„)<r ^<te n[X] p . 

• As /(i) ^ dom(j), which are the fresh variables of the variant 
of the program rule, ((/(t))0)| o = ((/(t))(0 W 7 ))|o = ((/(p))0?W 
7))|o = ((/(p))|o)(f « 7) = Y(9 H) 7) = r 2 [ S [Z]] p 

So, as A € dom(9' 1 ) then A ^ £> and Ze6 has been introduced by 
0, but this is impossible as vran(9) n £> = 0. 

- Let Y € doro(0) \ dom(cr) be. Then Y6> = Y(9 W 7) (as Y e dom(6>), 
Y(6> ttl 7) = Ycr6li (as o-6»i = W 7), Ya9[ = Y#i (as Y g dom(cr). 
But then no variable in B can appear in Y9[ = Y9 as (dom(9) U 
vran{9)) n B = 0. 

- Let Y e efom( 7 ) \ efom(er) be. Then Y 7 = Y(6> ttl 7) = Yct^ = Y9[, 
reasoning like in the previous case. As dom(j) C FV(f(p) — > s) it 
can happen: 

• Y FV(f(p)): Then no variable in £> can appear in Y7 because 
vran(i\ vExtra{R) ) n S = by the hypothesis. 
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• Y G FV(f(p)): Let Z & B appearing in Y7, then Z appears in 
/(?), so it must happen Y € dom(a) because otherwise cr could 
not be a unifier of f(t) and /(£>). But this is a contradiction so 
this case is impossible. 

(Letln) In this case eO = h(e\9, . . . , e9, . . . , e n 6) and e = /i(ei, . . . , e, . . . , e„). Then 
the let-rewriting step is 

e6 = h(e x 9, . . . , e6>, . . . , e n 0) -V let X = e9 in h(ei9, . . . , A, . . . , e n 9) = e' 

with h G S, e6» ee /(e 7 ) — / G FS 1 — or e# = let Y = e[ in e' 2 , and X is a 
fresh variable. Notice that eO is a let-rooted expression or a f(e') iff e is a let- 
rooted expression or a function application, as 9 € CTerm. Then we can apply 
a let-narrowing step: 

e ee ft.(ei, . . . , e, . . . , e„) ^' CT let X — e in h(e x , . . . , X, . . . , e„) ee e" 

with cr ee e and 9' = 9. Then the conditions in Lemma [TT] hold: 

i) e"6' ee (let X = ein h(e u . . . , A, . . . , e n ))0 = 
let X = e9 in h(ei9, ...,X9,..., e n 6) = 

let X = ed in h(e x 9, . . . , X, . . . , e n 9) ee e , since X is fresh an it cannot 
appear in dom(9'). 

ii) 0-9' = e6 = 6 = 9[W]. 

iii) (dom(9') U vran(9')) fl6 = (dom(9) U vran(9)) n £ = by hypothesis. 

(Bind) In this case e(9 = let X = t6 in e 2 9 and e = let X — t in e 2 . Then 
the let-rewriting step is let X = t6 in e 2 9-t l e 2 6[X/t6] with td G CTerm. As 
G CTerm, if t# G CTerm then i G CTerm, so we can apply a let-narrowing 
step: 

e ee let X = t in e 2 a ^[A/i] = e" 
with a ee e and 0' = 9. Then the conditions in Lemma [TT] hold: 

i) e"9' ee e2[A/t]#. By the variable convention we can assume that X ^ 
dom(9) U vran (9), so by Lemma [TJe 2 [X/t]0 ee e 2 9[X/t9] ee e'. 
ii) and iii) As before. 

(Elim) We have e9 = let X = e x 9 in e 2 9, so e = let X = e\ in e 2 . Then the 
let-rewriting step is e9 = let X = e x 9 in e 2 9^ 1 e 2 9 with X FV(e 2 9). By the 
variable convention (dom(9) U vran(9)) n BV(e) — 0, so as X G By(c) then 
A ^ dom(9) U vran(9). Then A ^ FV^fl) implies A ^ F7(e 2 ) and we can 
apply a let-narrowing step: 

e ee let X = e x in e 2 „ e 2 ee e" 

with c ee e and 9' = 9. Then the conditions in Lemma [TT] hold trivially. 
(Flat) In this case e9 ee let X = (let Y = e x 9 in e 2 9) in e 3 9 and e ee let X = 
(let Y = e x in e 2 ) in e 3 . The let-rewriting step is e9 = let X = (let Y = 
e x 9 in e 2 9) in e 3 9 -> l let Y = e x 9 in let X = e 2 9 in e 3 9 = e' with Y i FV(e 3 9). 
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By a similar reasoning as in the (Elim) case we conclude that Y ^ dom(9) U 
vran(9), so Y (fc FV(es). Then we can apply a let-narrowing step: 

e = let X — (let Y = e\ in e 2 ) in e 3 ~> a let Y = e\ in let A = e 2 in e$ = e" 

with <7 = e and 9' = 9. Then the conditions in Lemma [TT] hold trivially. 
(Contx) Then we have e = C[s]. By the variable convention (dom(9) U vran(9)) n 
W(e) = 0, so by lemma [25] eg = (C[s])0 = C0[s0], and the step was 

e9 = C9[s9] -V C9[s'\ = e' , because s9 s' 

Then we know that the lemma holds for s9 — K s', by the proof of the other cases, 
so taking W = W U FV(s) and B' = B (as BV{s) C W(C[s])) we can do 
s-^ l a ^s" for some 2 under the conditions stipulated. Now we can put this step 
into (Contx) to do: 

e = C[s] ^ l a2 Ca 2 [s"] = e" taking a = a 2 and 9' = 9' 2 

because if s~^> l a2 s" was a (Narr) step which lifts a (Fapp) step that uses the fresh 
variant (/(p) — > r) € V and adjusts with 7 6 CSubst, then: 

• dom(a 2 ) n W(C) = 0: As cr 2 = mgu(s,f(p)) then dom(a 2 ) C FV^(s) U 
FV(f(p)). As ct 2 < l±l 7 and it is an mgu then dom(a 2 ) C dom(9 l±l 7). 
If X € FV(s) n dom(a 2 ) then A ^ ^0771(7) C FV(f(p) -> r), so it must 
happen A e dom(9); but then A g SF(C) because dom(0) n BV(C) = 
by the variable convention. 

Otherwise it could happen A g FV(f(p)) n dom(a 2 ), then X appears in 
the fresh variant and so it cannot appear in C 

• 7jran(cr 2 |\ t , Qr( p ) ) PI W(C) = 0: As dom(a 2 ) C FV(s) U FV(f(p)) then we 
have OTan((72|\uar(p)) — wran^lFyfs))- But as er 2 = mgu(s, f(p)) then 
uran(<7|jjv( s )) C FV(f(p)), which are part of the fresh variant, so every 
variable in vrcm(<7 2 |\„ ar (p)) is fresh and so cannot appear in C 

Then the conditions in Lemma [Til hold: 

ii) cr0' = 9[W}: Because W C W', and er 2 6> 2 = 6>[W], by the proof of the other 
cases. 

i) e"9' = e': As BV(Ca 2 ) = BV(C), by the variable convention, BV(C) C 
B7(e) C by the hypothesis, and (dom(9' 2 ) U vran(0' 2 )) n B = 0, 

by the proof of the other cases, then (dom(9' 2 ) U vran(9' 2 )) H i?T^(Ctr 2 ) = 0. 
But then: 

e"0' = (Ca 2 [s"])0 2 = Ca 2 9' 2 [s"9' 2 ] = e' 

CB s' 

Because we have s"9' 2 = s', by the proof of the other cases, and because 
FV(C) C FV(e) C W and <72# 2 = 0[W], as we saw in the previous case 
(remember a = a 2 and 9' = 9' 2 ). 

iii) (dom(9') U vran(9')) D B = 0: Because 0' = 2 an d the proof of the other 
cases. 
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The proof for any number of steps proceeds by induction over the number n of 
steps of the derivation e0 — > l ™e'. The base case where n — is straightforward, as 
then we have eO — V e8 = e' so we can do e ~~>' e e = e", so a — e and taking 9' = 8 
the lemma holds. In the inductive step we have e8 — > l e\ — > l e' , and we will try to 
build the following diagram: 




By the previous proof for one step we have e-^ l ai e'{ and 9[ £ CSubst under the 
conditions stipulated. In order to this with the IH we define the sets B\ = BUBV(ei) 
and Wi = (W \ dom{a\)) U vran(ai) U vE, where vE is the set of extra variables 
in the fresh variant f(p) — » s used in ax e'{, if it was a (Narr) step; or empty 
otherwise. We also define 9\ = 0i|wi- Then: 

FV(e") U dom(9 1 ) C W x : We have dom(9 1 ) C Wi by definition of 6 X . On the other 
hand we have FV(e'{) C Wi because given X £ FV(e") we have two possibilities: 

a) X £ FV(e)): then X ^ dom{a\) since otherwise it disappears in the step 
eW fl e". As dom(0) U FV(e) C W then X £ W\dom(a x ), so X £ Wi. 

b) X ^ i r V(e)) : then there are two possibilities: 

i) X has been inserted by u\, so X £ vran(ai) and X £ W\. 

ii) X has been inserted as an extra variable in a (Narr) step. Since the nar- 
rowing substitution is a mgu then a\ cannot affect X, so X £ W\ because 
X £ vE. 

e"9i = e\. Because as we have seen, FV(e") C Wi, and so e"9i = e'{9' l \y^ 1 = 
e'{9' 1 = ei, by the proof for one step. 

BV(e'{) C Bj^: As 6^ G CSubst, e'[8' x = ej and no CSubst can introduce any binding 
then W(ei) = W(e'/). But B 1= BU W(ei), so BVfe'/) = SV(e x ) C B x . 
(dom(6»i) U uran(0i)) n B x = 0: As 6>i € CSubst, e'{9[ = e x and no CSubst can 
introduce any binding then BV(ei) = BV(e"). Then it can happen: 

a) BV{e'{) C S7(e): Then B = Bi, as W(ei) = SF(e'/) C BV(e) C B by 
hypothesis. Then, as (dom(9' 1 ) U uran(^)) n B = by the proof for one step, 
then (dom(9[) U uran(^)) H Bi = 0, and so {dom{9 1 ) U vran(6x)) H Bi = 0, 
because 0i = ^ilwi an d so its domain and variable range is smaller than the 
domain of #5.. 

b) W(e") D BV(e): Then e-^'o-je" must have been a (Letln) step and so a = e 
and 9[ — 9. As the new bounded variable Z is fresh wrt. 9 then it is also fresh 
for 8[ = 9, and so Bi = B U {Z} has no intersection with dom(9' 1 ) U vran(9' 1 ) 
nor with dom(9\) U vran{9{), which is smaller. 
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• (j\6i = 9[W]: It is enough to see that a\9i = aiO'^W], because we have o\Q' x = 9[W] 
by the proof for one step, and this is true because given A £ W: 

a) If A £ dom(cTi) then FV(Xai) C uran(eri) C VVi, so as 0\ = 6[\wi then 
XaxOx = Xuiflilw! = Acr^. 

b) If I e >V \ dom(ai) then I G Wi by definition, and so Xcri0i = X6\ (as 
X £ dom(cri)), X81 = X6[\ Wl = X9[ (as X £ Wi), and A6>i = Acr(9i (as 
X dom(a 1 )). 

So we have e'/^i = ei and ei — ?> r e', but then we can apply the induction 
hypothesis to e'[6\ — e' using Wi and Bi, which fulfill the hypothesis of the 
lemma, as we have seen. Then we get e'{~> l a2 e 2 and 8' 2 £ CSubst under the 
conditions stipulated. But then we have: 

e~^ l ai e'{ ~>'* 2 e 2 taking e" = e 2 , a = cr 1 a 2 and & = 6' 2 

for which we can prove the conditions in Lemma 11 



i) e"6' = e': As e"8' = e' 2 % = e' by IH. 

ii) a 6' = 6\}V]; That is, o\<j 2 & 2 = 0[W]. As we have a^Ox = 9[W], as we saw before, 
all that is left is proving a\a 2 Q' 2 = (?\6i\W\, which happens because given X £W: 

a) If X £ dom(ai) then FV{Xa x ) C uran(cri) C Wi, so as cr 2 6> 2 = ^[Wi] by 
IH, then (Xo x )o 2 & 2 = (X<7i)0i. 

b) If X £ W \ dom(a 1 ) then X £ VVi by definition, and so, as er 2 02 = ^l[Wi] by 
IH, then Xa x a 2 & 2 = Xa 2 9 2 (as A £ (fornix)), Ao- 2 2 = A6»i (as A e Wi), 
A6»i = XaJi (as A £ dom(ai)). 

iii) (dom(e') U vran(Q')) n B = 0: That is (dom(6' 2 ) U vran{9' 2 )) n 6 = 0, which happens 
as {dom(9' 2 ) U wcm(0 2 )) n 61 = by IH and 6 C B^ 

□ 



A.iO Proofs for Section\7\ 

The let-binding elimination transformation C satisfies the following interesting 
properties, which illustrate that its definition is sound. 

Lemma 33 

For all e, e' € LExp, C £ Cntxt, X £ V we have: 

i) |e1 = |e|. 

ii) If e G Exp then e = e. 

iii) FV(e) C FV(e) 

iv) efX/P] =e|A/e / ]. 
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Proof 

i-iii) Easily by induction on the structure of e. 
iv) A trivial induction on the structure of e, using Lemma [I] for the case when e has 
the shape e = let X = e\ in e 2 . 

□ 



Lemma 12 (Copy lemma) 
For all e, ei, e 2 € -Exp, le V: 

i) ei — s> e 2 implies eLY/ei] -»•* e[X/e 2 }. 

ii) ei — »* e 2 implies e[X/e\] — ►* e[Jf/e 2 ]. 

Proof 

To prove ij we proceed by induction on the structure of e. Concerning the base 
cases: 



If e = X then e[X/e{\ = e\ — > e 2 = e[X/e 2 ], by hypothesis. 
If e ee y G V \ {X} then e[X/ ei ] = Y ^° Y = e[X/e 2 ]. 
Otherwise e = h for some /i G E, so eLY/ei] = ft- — >° /i = eLY/e 2 ] 



Regarding the inductive step, then e = /i(ei, . . . , e' n ) and so 

e[X/ei] = ft(e / 1 [Jf/ei] > ...,<[X/ei]) 

->* h(e' 1 [X/e 2 ], • ■ • , e£jX/e 2 ]) by IH, n times 

= e[X/e 2 ] 

The proof for ii) follows the same structure. □ 



Lemma 13 (One-Step Soundness of let-rewriting wrt. term rewriting) 
For all e,e' G LExp we have that e— K e' implies e — >•* e'. 

froo/ 

We proceed by a case distinction over the rule of let-rewriting used in the step 
e^ 1 e'. 

(Fapp) Then we have: 

e = f{p)6 W rO = e! for some (f(p) ->r)e?,Se CSubst 
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But then f(p)8,r8 G Exp, therefore f(p)0 = f(p)9 and r# = r#, by Lemma 
ii), and so we can link e = f(p)0 = f{p)0 — > rd = rO = e', by a term rewriting 
step. 

(Letln) Then we have: 

e = h(ei,. . . , e k , ■ ■ ■ , e„) ->•' /et X = e fe in ft(ei, . . . ,X, . . . , e„) = e' 

where X is a fresh variable (among other conditions). But then 

e' = h(ei, ... ,X,.. .,e n )[X/e k ] = h(e~i, ...,X,.. .,e^)[X/e k ] 

= h(ei, . . . , efe, . . . , e^) as X is fresh 

= h(e 1 , . . . , e k , . . . , e n ) = e 



Therefore e — > 



8G 



Lopez-Fraguas et al. 



(Bind) Then we have: 

e = let X — t in e\ ->•' e\ [X/t] = e' with t <E CTerm 



But then e = el[X/t\ = ei[X/t] = e', by Lemma 33 iv), hence e — e = e'. 
(Elim) Then we have: 

e ee let X = ei in e 2 ->•* e 2 = e' with X FV(e 2 ) 

But then 

e ee e^[X/el] 

ee e2[X/ei] by Lemma [33] iv) 
ee e 2 ee e 1 as X ^ Fy(e 2 ) 

Therefore e — >° e ee e'. 
(Flat) Then we have: 

e ee let X = (?et y = ei in e 2 ) in e 3 — > l let Y = e\ in (let X = e 2 in e 3 ) 

where Y £ FV(e 3 ). But then 

e ee e 3 [X/let Y^e~~ x in e 2 ] ee e 3 [X / (e 2 [Y / e\])] 



e 3 [X/e 2 ][Y/ei} Y £ FV(e 3 ) by Lemma||mJ 

(let X — e 2 in e 3 )[Y/e~i] 



= j 



Therefore e — >° e ee e'. 
(Contx) Then we have: 

e = C[ei]->'C[e 2 ] = e' 
with e\ —y e 2 by some of the previous rules, therefore e\ —>* e 2 by the proof of 
the previous cases. We will prove that ei — >* e^ implies C[e{\ — >•* C[e 2 ), thus 
getting e— >* e' as a trivial consequence. 

We proceed by induction on the structure of C. Regarding the base case then 
C ee [] and so C[e{\ ee e\ — >* e 2 = C[e 2 ] by hypothesis. For the inductive step: 

• If C ee let X = C in a then by IB we get C'[e\] — >* C'[e 2 ], and so 

Cfoj ee a\X/C\^]] 

^* a[X/C'[e 2 ]] by IB and Lemma [12] 

Notice that it is precisely because of this case that we cannot say that e — > l e' 
implies e — >* e' in zero or one steps, because the copies of C[ei] made by 
the substitution [X/C'[ei]] may force the zero or one steps derivation from 
C'[ei] to be repeated several times in derivation a[X/C'[ei]] — >* aLY/C[e2]]. 
This is typical situation when mimicking term graph rewriting derivations 
by term rewriting. 

• If C ee let X = a in C then C[eJ ee cJ\^\[X/a\ ->* C^[X/a] = Cjejj, by 
IB combined with closedness under substitutions of term rewriting. 
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• Otherwise C = h(a%, . . . , C , . . . , a n ) and then C[e{\ = h(d\, . . . , C'[ei], . . . , a^) 
->* h(ai,..., C'M, . . . , e£) = C[eJ by IH. 

□ 

Proposition \10\ 

For all <t G Subst±, 6 G [cr], we have that < ex. 
Proof 

Given some X G V, we have two possibilities. If X £ dom(6) then taking any 
< G CTermx such that "P I~c,rwx 0(X) — " ^ by Lemma [5] we have t C 0(X), 
because G [cr] C CSubstj_. But (9 G [cr] implies V \-crwl cr(X) -> 6(X), therefore 
V °~(X) — > t by the polarity from Proposition |3j which holds for CRWL 

too. Hence [0(X)] C [a(X)j. 

On the other hand, if X £ dom(9) then for any t G CTerm± such that V \~crwl 
6{X) = X -> i we have that f =_L or t = X. If t =_L then P hcKWX a(X) -> t 
by rule (B). Otherwise G [ct] implies V \- C rwl ct(X) -» 0(X) = X = i. Hence 
[0(X)] C HZ)]. □ 

Proposition [77] 

For all a G DSusbt±, [cr] is a directed set. 
Proof 

For any preorder <, any directed set -D wrt. it and any elements ei,e2 G D by 
ei Ud e2 we denote the element e^ G D such that ei < e% and e2 < e^ that must 
exist because D is directed. 

Now, given any a G DSubst± we have that VX G V, [cr(X)] is a directed set, 
because if X G dom(a) then we can apply the definition of DSubst± and otherwise 
[X] = {X, _L}, which is directed. Now given 61,62 G [cr] we can define #3 G CSubst± 
as d 3 (X) = X (X) U CT(X) 2 (X), which fulfills: 

1. 6i C 6*3 for i G {1,2}, because for any X G V we have that [cr(X)] is directed 
(as we saw above) and 6i{X) G [cr(X)J (because 61,62 G [cr]), therefore 0»(X) C 
X (X) U ff(x) 2 (X) = 3 (X) by definition. 

2. 3 G [cr], because VX G V,0 3 (X) = X (X) U a(x) 2 (X) G |a(X)] by definition. 

□ 

We will use the following lemma about non-triviality of substitution denotations 
as an auxiliary result for proving Lemma [15] 

Lemma 34 

For all a G Subst± we have that [cr] 7^ and given X = dom(a) then [X/ _L] G [cr]. 
Proof 

It is enough to prove that if X = dom(a) then [X/ _L] G [cr]. First of all [X/ _L] G 
CSubst± by definition. Now consider some Y G V. 

i) If F G X then cr(y) ->_L= F[X/ _L], by rule (B). 

ii) Otherwise Y X = dom(a), hence a(Y) = Y ->Y = Y[X/ ±], by rule (BR). 
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□ 

Lemma Q5| 

For all a G DSusbt± , e G Exp± , i G CTerm± , 

if ecr — > £ then 3# G [cr] such that e9 — > t 

Proof 

We proceed by a case distinction over e: 

• If e = X G dom(o~) : Then ecr = cr(X) —> t, so we can define: 

( t if Y = X 
6{Y) = I _L if Y G dom(cr) \ {X} 
[ Y" otherwise 

Then 9 G [cr] because obviously 9 G CSusbt±, and given Z eV. 

a) 1£Z = X then cr(Z) = cr(X) ^> t = 6»(Z) by hypothesis. 

b) If Z G (dom(cr) \ {X}) then cr(Z) ->_L= 6»(Z) by rule (B). 

c) Otherwise Z £ dom(cr) and then <r(Z) = Z^-Z = 6{Z) by rule (RR). 

But then e9 = 9{X) = t — > t by Lemma [5] — which also holds for CRWL, because 
CRWL and CRWL; et coincide for c-terms — , as t G CTerm±. 
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• If e = X $ dom(a) : Then given Y = dom(a) we have [Y/ _L] G [cr] by Lemma 
so we can take 9 = {[Y/ JL]} for which [ecr] = [Xcr] = [X] = [X[F/ _L]] = [X6»]. 

• If e g" V then we proceed by induction over the structure of ecr — > t: 

Base cases 

(B) Then t =_L, so given Y = dom(a) we can take 9 = {[Y/ _L]} for which 

eO ->_L by rule (B). 
(RR) Then e G V and we are in the previous case. 
(DC) Similar to the case for e = X g" dom(a). 

Inductive steps 

(DC) Then e = c(e±, . . . , e„), as e ^ V, and we have: 

eicr ->ti ... e„cr -> t n 



ea = c(ei(T, . . . , e„cr) -> c(ti, . . . ,t„) = i 



DC* 



Then by IH or the proof of the other cases we have that Vi G {1, . . . , n}. 39i G 
[a] such that — •> tj. But as cr G DSusbt± then [cr] is directed by Lemma 



11 therefore there must exist some 9 G [cr] such that Vi G {1, . . . , n}.0, C 
and so by Proposition [5] — which also holds for CRWL, by Theorem [4] — we 
have Vz G {1, . . . , n\.ei9 — > tj, so we can build the following proof: 

ei# -> ii ... e„6> -> t„ 



c(e i 6 l , . . . , en^) -> c(*i, . . . , t n ) = t 



DC 



(OR) Very similar to the proof of the previous case. We also have e = f(e\ , . . . , e n 
(as e ^ V) and given a proof for ecr = f(ei, . . . , e n )a —> t, so we can apply the 
IH or the proof of the other cases to every ei<j -> pi/j, to get some 9i G [cr] 
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such that eiOi — > pifi. Then we can use Lemma 11 and Proposition [5] to use 
the obtained 9 to compute the same values for the arguments of /, thus using 
the same substitution \x £ CSubst± for parameter passing in (OR). 

□ 

Theorem liffl 

Let V be a CRWL-deterministic program, and e,e' £ Exp,t £ CTerm. Then: 

a) e — >* e' implies e — ¥ l * e" for some e" £ LExp with |e"| □ |e'|. 

b) e t iff e ^ r t iff P r- CflW - L e -> t. 



Proof 

a) Assume e — e'. By Lemma 16 [e'lC [e] and by Lemma[5]we have |e'| € [e'J, then 
\e'\ € [e]. Therefore, by Theorem 
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there exists e" £ LExp such that e 



b) The parts e — >' < iff V \~crwl e —> t, and e — r t implies e — >* £ have been already 
proved for arbitrary programs in Theorems [12] and [17] respectively. What remains 
to be proved is that e — >* t implies e — > l t (or the equivalent V ^crwl e —> t). 
Assume e — >* t. Then [£] C [e] by Lemma 16 Now, by Lemma [5] t £ [£], and 
therefore t e [e], which exactly means that V \~crwl e —> t. 
□ 



